LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for December 4, 2008

KSM runs into patent trouble

Tux3: the other next-generation filesystem

LWN.net Weekly Edition for November 27, 2008

LWN.net Weekly Edition for November 20, 2008

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

Ethereal: Multiple security problems

Package(s):ethereal CVE #(s):CAN-2004-0633 CAN-2004-0634 CAN-2004-0635
Created:July 9, 2004 Updated:August 19, 2004
Description: There are multiple vulnerabilities in versions of Ethereal earlier than 0.10.5, including:
* In some cases the iSNS dissector could cause Ethereal to abort.
* If there was no policy name for a handle for SMB SID snooping it could cause a crash.
* A malformed or missing community string could cause the SNMP dissector to crash.
See this advisory for more information.
Alerts:
Whitebox WBSA-2004:378-01 2004-08-19
Red Hat RHSA-2004:378-01 2004-08-05
Netwosix NW-2004-0016 2004-07-23
Fedora FEDORA-2004-234 2004-07-22
Debian DSA-528-1 2004-07-17
Fedora FEDORA-2004-220 2004-07-14
Fedora FEDORA-2004-219 2004-07-14
Mandrake MDKSA-2004:067 2004-07-09
Gentoo 200407-08 2004-07-09
(Log in to post comments)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds