CVE-2005-3243

Ethereal <= 0.10.12 - Remote Code Execution via SLIMP3 and AgentX Dissector Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-3243. PoCs published by Sowhat.

AI-analyzed exploit summary This is a proof-of-concept exploit for a buffer overflow vulnerability in Ethereal's SLIMP3 dissector. It sends a maliciously crafted UDP packet to trigger a crash in Ethereal versions 0.9.1 to 0.10.12.

Description

Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute arbitrary code via unknown vectors in the (1) SLIMP3 and (2) AgentX dissector.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Sowhat · pythondoswindows

https://www.exploit-db.com/exploits/1266

View Code ZIP pw:eip

This is a proof-of-concept exploit for a buffer overflow vulnerability in Ethereal's SLIMP3 dissector. It sends a maliciously crafted UDP packet to trigger a crash in Ethereal versions 0.9.1 to 0.10.12.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Ethereal 0.9.1 to 0.10.12

No auth needed

Prerequisites: Network access to the target running Ethereal · Ethereal configured to capture SLIMP3 traffic

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (19)

Core 19

Core References

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2005-809.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/17327

Third Party Advisory vendor-advisory x_refsource_gentoo

http://www.gentoo.org/security/en/glsa/glsa-200510-25.xml

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/17392

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/20126

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9836

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/17480

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1015082

Patch, URL Repurposed x_refsource_confirm

http://www.ethereal.com/appnotes/enpa-sa-00021.html

Vendor Advisory vendor-advisory x_refsource_suse

http://www.novell.com/linux/security/advisories/2005_25_sr.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/17286

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/20135

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2006/dsa-1171

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21813

Various Sources x_refsource_misc

http://www.frsirt.com/exploits/20051020.ethereal_slimp3_bof.py.php

Vendor Advisory vendor-advisory x_refsource_fedora

http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00003.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/17377

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/15148

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/17254

Scores

EPSS 0.1083

EPSS Percentile 95.3%

Details

Status published

Products (29)

ethereal_group/ethereal 0.9.1

ethereal_group/ethereal 0.9.2

ethereal_group/ethereal 0.9.3

ethereal_group/ethereal 0.9.4

ethereal_group/ethereal 0.9.5

ethereal_group/ethereal 0.9.6

ethereal_group/ethereal 0.9.7

ethereal_group/ethereal 0.9.8

ethereal_group/ethereal 0.9.9

ethereal_group/ethereal 0.9.10

... and 19 more

Published Oct 27, 2005

Tracked Since Feb 18, 2026