Vulnerability Database

296,172

Total vulnerabilities in the database

CVE-2005-1431

The "record packet parsing" in GnuTLS 1.2 before 1.2.3 and 1.0 before 1.0.25 allows remote attackers to cause a denial of service, possibly related to padding bytes in gnutils_cipher.c.

Published: May 3, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-1431
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
gnu / gnutls	1.0.20	1.0.20.x
gnu / gnutls	1.0.24	1.0.24.x
gnu / gnutls	1.0.21	1.0.21.x
gnu / gnutls	1.0.19	1.0.19.x
gnu / gnutls	1.2.1	1.2.1.x
gnu / gnutls	1.2.2	1.2.2.x
gnu / gnutls	1.2.0	1.2.0.x
gnu / gnutls	1.0.18	1.0.18.x
gnu / gnutls	1.0.23	1.0.23.x
gnu / gnutls	1.0.22	1.0.22.x