mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 09:11:28 +00:00
198 lines
6.6 KiB
JSON
198 lines
6.6 KiB
JSON
{
|
|
"id": "CVE-2005-3267",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2005-10-27T10:02:00.000",
|
|
"lastModified": "2017-07-11T01:33:08.533",
|
|
"vulnStatus": "Modified",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Integer overflow in Skype client before 1.4.x.84 on Windows, before 1.3.x.17 on Mac OS, before 1.2.x.18 on Linux, and 1.1.x.6 and earlier allows remote attackers to cause a denial of service (crash) via crafted network data with a large Object Counter value, which leads to a resultant heap-based buffer overflow."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "LOW",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "COMPLETE",
|
|
"integrityImpact": "COMPLETE",
|
|
"availabilityImpact": "COMPLETE",
|
|
"baseScore": 10.0
|
|
},
|
|
"baseSeverity": "HIGH",
|
|
"exploitabilityScore": 10.0,
|
|
"impactScore": 10.0,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-189"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:0.92.0.12:*:linux:*:*:*:*:*",
|
|
"matchCriteriaId": "461F013F-A352-4F97-BB3D-C13C0B831D03"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:0.93.0.3:*:linux:*:*:*:*:*",
|
|
"matchCriteriaId": "75471285-8A28-4A2C-8A35-91C2E581CEFB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:0.98.0.04:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "69649CEB-554F-4A0C-BD3A-DF3D90AE0BCF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.0.0.1:*:linux:*:*:*:*:*",
|
|
"matchCriteriaId": "1BD1B55D-1E8D-4B3A-9B9A-7551EB91A98B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.0.0.7:*:linux:*:*:*:*:*",
|
|
"matchCriteriaId": "081AA0ED-202C-4986-B62E-F773529E9C88"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.0.0.9:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "A92ED4BC-A607-46C5-B602-8F7B7D4856F9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.0.0.10:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "834D0C77-767F-4AB5-AAA3-D5CB3B3C50F9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.0.0.18:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "8B664C2E-178E-4D7C-B84F-ABB214076CBC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.0.0.29:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "3208E799-6F4D-4F93-BB26-CD9B5CCF0CB9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.0.0.94:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "DA180874-A4BD-4B60-85CB-B1CEC3F93F44"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.0.0.97:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "1DECB2F4-8E0B-4140-9A2F-77F14B4720C6"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.0.0.100:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "83C0D63D-E52C-4B32-8CEF-6F3915B499F0"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.1.0.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "85BB57D5-C376-4EE9-B3C7-0B56FFDA87DA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.1.0.20:*:linux:*:*:*:*:*",
|
|
"matchCriteriaId": "88E79362-05FD-427D-BAC4-567C399FFE89"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.1.06:*:pocket_pc:*:*:*:*:*",
|
|
"matchCriteriaId": "E965C7BF-640C-4504-B02A-0D9524DF63FC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.2.0.17:*:linux:*:*:*:*:*",
|
|
"matchCriteriaId": "1CD92F3E-3047-4D94-A26B-E639D83745B0"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.3.0.16:*:mac_os_x:*:*:*:*:*",
|
|
"matchCriteriaId": "25804F1C-D497-4524-AC14-A5D7E3417057"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:skype_technologies:skype:1.4.0.83:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "27328CD1-28BE-4349-A999-7FBBEEDDB595"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://marc.info/?l=bugtraq&m=113026202728568&w=2",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://securityreason.com/securityalert/115",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://skype.com/security/skype-sb-2005-03.html",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Patch",
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.kb.cert.org/vuls/id/905177",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"US Government Resource"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/15192",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Exploit",
|
|
"Patch"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.vupen.com/english/advisories/2005/2197",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22850",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |