anonhaven
Ad

CVE-2006-4574

HIGH CVSS 3.1: 7.5 EPSS 6.82%
Updated Apr 23, 2026
Wireshark
Parameter Value
CVSS 7.5 (HIGH)
Affected Versions 0.10.1 — 0.99.3
Type CWE-617, CWE-193
Vendor Wireshark
Public PoC No

Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ethereal) 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger an assertion error related to unexpected length values.

Attack Parameters

Attack Vector
Network
Can be exploited remotely
Attack Complexity
Low
Easy to exploit
Privileges Required
None
No privileges needed
User Interaction
None
No user interaction needed

Impact Assessment

Confidentiality
None
No data leak
Integrity
None
No data modification
Availability
High
Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-617
CWE-193

Vulnerable Products 1

Configuration From (including) Up to (excluding)
Wireshark Wireshark
cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*
 0.10.1 <= 0.99.3

References 22

ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P
secalert@redhat.com
http://secunia.com/advisories/22590
secalert@redhat.com
http://secunia.com/advisories/22659
secalert@redhat.com
http://secunia.com/advisories/22672
secalert@redhat.com
http://secunia.com/advisories/22692
secalert@redhat.com
http://secunia.com/advisories/22797
secalert@redhat.com
http://secunia.com/advisories/22841
secalert@redhat.com
http://secunia.com/advisories/22929
secalert@redhat.com
http://secunia.com/advisories/23096
secalert@redhat.com
http://securitytracker.com/id?1017129
secalert@redhat.com
http://support.avaya.com/elmodocs2/security/ASA-2006-255.htm
secalert@redhat.com
http://www.mandriva.com/security/advisories?name=MDKSA-2006:195
secalert@redhat.com
http://www.novell.com/linux/security/advisories/2006_65_ethereal.html
secalert@redhat.com
http://www.redhat.com/support/errata/RHSA-2006-0726.html
secalert@redhat.com
http://www.securityfocus.com/archive/1/450307/100/0/threaded
secalert@redhat.com
http://www.securityfocus.com/bid/20762
secalert@redhat.com
http://www.us.debian.org/security/2006/dsa-1201
secalert@redhat.com
http://www.vupen.com/english/advisories/2006/4220
secalert@redhat.com
http://www.wireshark.org/security/wnpa-sec-2006-03.html
secalert@redhat.com
https://exchange.xforce.ibmcloud.com/vulnerabilities/29844
secalert@redhat.com
https://issues.rpath.com/browse/RPL-746
secalert@redhat.com
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%…
secalert@redhat.com
Share Post Share Share Share

Related Vulnerabilities

CVE-2026-3203

Wireshark

7.5

CVE-2026-3202

Wireshark

7.5

CVE-2026-3201

Wireshark

7.5

CVE-2025-13499

Wireshark

7.8

CVE-2025-1492

Wireshark

7.5