Executive Summary
| Summary | |
|---|---|
| Title | ethereal security update |
| Informations | |||
|---|---|---|---|
| Name | RHSA-2005:687 | First vendor Publication | 2005-08-10 |
| Vendor | RedHat | Last vendor Modification | 2005-08-10 |
| Severity (Vendor) | Moderate | Revision | 01 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 7.5 | Attack Range | Network |
| Cvss Impact Score | 6.4 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Problem Description: Updated Ethereal packages that fix various security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64 Red Hat Linux Advanced Workstation 2.1 - ia64 Red Hat Enterprise Linux ES version 2.1 - i386 Red Hat Enterprise Linux WS version 2.1 - i386 Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 3. Problem description: The ethereal package is a program for monitoring network traffic. A number of security flaws have been discovered in Ethereal. On a system where Ethereal is running, a remote attacker could send malicious packets to trigger these flaws and cause Ethereal to crash or potentially execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2005-2360, CAN-2005-2361, CAN-2005-2362, CAN-2005-2363, CAN-2005-2364, CAN-2005-2365, CAN-2005-2366, and CAN-2005-2367 to these issues. Users of ethereal should upgrade to these updated packages, which contain version 0.10.12 which is not vulnerable to these issues. Note: To reduce the risk of future vulnerabilities in Ethereal, the ethereal and tethereal programs in this update have been compiled as Position Independant Executables (PIE) for Red Hat Enterprise Linux 3 and 4. In addition FORTIFY_SOURCE has been enabled for Red Hat Enterprise Linux 4 packages to provide compile time and runtime buffer checks. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. 5. Bug IDs fixed (http://bugzilla.redhat.com/): 164243 - CAN-2005-2360 Multiple ethereal flaws (CAN-2005-2361 CAN-2005-2362 CAN-2005-2363 CAN-2005-2364 CAN-2005-2365 CAN-2005-2366 CAN-2005-2367) |
Original Source
| Url : https://rhn.redhat.com/errata/RHSA-2005-687.html |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:10007 | |||
| Oval ID: | oval:org.mitre.oval:def:10007 | ||
| Title: | Unknown vulnerability in the (1) GIOP dissector, (2) WBXML, or (3) CAMEL dissector in Ethereal 0.8.20 through 0.10.11 allows remote attackers to cause a denial of service (application crash) via certain packets that cause a null pointer dereference. | ||
| Description: | Unknown vulnerability in the (1) GIOP dissector, (2) WBXML, or (3) CAMEL dissector in Ethereal 0.8.20 through 0.10.11 allows remote attackers to cause a denial of service (application crash) via certain packets that cause a null pointer dereference. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2005-2364 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:10059 | |||
| Oval ID: | oval:org.mitre.oval:def:10059 | ||
| Title: | Unknown vulnerability several dissectors in Ethereal 0.9.0 through 0.10.11 allows remote attackers to cause a denial of service (application crash) by reassembling certain packets. | ||
| Description: | Unknown vulnerability several dissectors in Ethereal 0.9.0 through 0.10.11 allows remote attackers to cause a denial of service (application crash) by reassembling certain packets. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2005-2362 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:10225 | |||
| Oval ID: | oval:org.mitre.oval:def:10225 | ||
| Title: | Unknown vulnerability in the (1) AgentX dissector, (2) PER dissector, (3) DOCSIS dissector, (4) SCTP graphs, (5) HTTP dissector, (6) DCERPC, (7) DHCP, (8) RADIUS dissector, (9) Telnet dissector, (10) IS-IS LSP dissector, or (11) NCP dissector in Ethereal 0.8.19 through 0.10.11 allows remote attackers to cause a denial of service (application crash or abort) via unknown attack vectors. | ||
| Description: | Unknown vulnerability in the (1) AgentX dissector, (2) PER dissector, (3) DOCSIS dissector, (4) SCTP graphs, (5) HTTP dissector, (6) DCERPC, (7) DHCP, (8) RADIUS dissector, (9) Telnet dissector, (10) IS-IS LSP dissector, or (11) NCP dissector in Ethereal 0.8.19 through 0.10.11 allows remote attackers to cause a denial of service (application crash or abort) via unknown attack vectors. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2005-2361 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:10765 | |||
| Oval ID: | oval:org.mitre.oval:def:10765 | ||
| Title: | Format string vulnerability in the proto_item_set_text function in Ethereal 0.9.4 through 0.10.11, as used in multiple dissectors, allows remote attackers to write to arbitrary memory locations and gain privileges via a crafted AFP packet. | ||
| Description: | Format string vulnerability in the proto_item_set_text function in Ethereal 0.9.4 through 0.10.11, as used in multiple dissectors, allows remote attackers to write to arbitrary memory locations and gain privileges via a crafted AFP packet. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2005-2367 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11239 | |||
| Oval ID: | oval:org.mitre.oval:def:11239 | ||
| Title: | Unknown vulnerability in the BER dissector in Ethereal 0.10.11 allows remote attackers to cause a denial of service (abort or infinite loop) via unknown attack vectors. | ||
| Description: | Unknown vulnerability in the BER dissector in Ethereal 0.10.11 allows remote attackers to cause a denial of service (abort or infinite loop) via unknown attack vectors. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2005-2366 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11254 | |||
| Oval ID: | oval:org.mitre.oval:def:11254 | ||
| Title: | Unknown vulnerability in the LDAP dissector in Ethereal 0.8.5 through 0.10.11 allows remote attackers to cause a denial of service (free static memory and application crash) via unknown attack vectors. | ||
| Description: | Unknown vulnerability in the LDAP dissector in Ethereal 0.8.5 through 0.10.11 allows remote attackers to cause a denial of service (free static memory and application crash) via unknown attack vectors. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2005-2360 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11271 | |||
| Oval ID: | oval:org.mitre.oval:def:11271 | ||
| Title: | Unknown vulnerability in the (1) SMPP dissector, (2) 802.3 dissector, (3) DHCP, (4) MEGACO dissector, or (5) H1 dissector in Ethereal 0.8.15 through 0.10.11 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors. | ||
| Description: | Unknown vulnerability in the (1) SMPP dissector, (2) 802.3 dissector, (3) DHCP, (4) MEGACO dissector, or (5) H1 dissector in Ethereal 0.8.15 through 0.10.11 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2005-2363 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:9118 | |||
| Oval ID: | oval:org.mitre.oval:def:9118 | ||
| Title: | Unknown vulnerability in the SMB dissector in Ethereal 0.9.0 through 0.10.11 allows remote attackers to cause a buffer overflow or a denial of service (memory consumption) via unknown attack vectors. | ||
| Description: | Unknown vulnerability in the SMB dissector in Ethereal 0.9.0 through 0.10.11 allows remote attackers to cause a buffer overflow or a denial of service (memory consumption) via unknown attack vectors. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2005-2365 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
OpenVAS Exploits
| Date | Description |
|---|---|
| 2009-10-10 | Name : SLES9: Security update for ethereal File : nvt/sles9p5015871.nasl |
| 2008-09-24 | Name : Gentoo Security Advisory GLSA 200507-27 (Ethereal) File : nvt/glsa_200507_27.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 853-1 (ethereal) File : nvt/deb_853_1.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 18670 | Ethereal AFP Protocol Dissector Remote Format String Ethereal contains a format string flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when unchecked data is passed to proto_item_set_text() which uses formats. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity. |
| 18388 | Ethereal Multiple Unspecified Dissector Format String Overflow Ethereal contains an unspecified format string flaw related to several dissectors that may allow an attacker to execute arbitrary code. No further details have been provided. |
| 18387 | Ethereal Multiple Unspecified Dissector Packet Reassembly DoS Ethereal contains an unspecified flaw related to packet reassembly for several dissectors that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18385 | Ethereal DHCP Dissector Unspecified DoS Ethereal contains an unspecified flaw related to the DHCP dissector that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18384 | Ethereal CAMEL Dissector Unspecified DoS Ethereal contains an unspecified flaw related to the CAMEL that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18383 | Ethereal HTTP Dissector Unspecified DoS Ethereal contains an unspecified flaw related to the HTTP dissector that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18381 | Ethereal DCERPC Dissector Unspecified DoS Ethereal contains an unspecified flaw related to the DCERPC dissector that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18380 | Ethereal DOCSIS Dissector Unspecified DoS Ethereal contains a flaw that may allow a remote denial of service. The issue is triggered when the DOCSIS Dissector processes an unspecified malformed packet, and will result in loss of availability for the service. |
| 18379 | Ethereal SMPP Dissector Infinite Loop DoS |
| 18378 | Ethereal SCTP Graphs Unspecified DoS Ethereal contains an unspecified flaw related to the SCTP graphs that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18377 | Ethereal GIOP Dissector Null Pointer Dereference DoS Ethereal contains a flaw related to the GIOP dissector that may allow an attacker to cause a denial of service by dereferencing a null pointer. No further details have been provided. |
| 18376 | Ethereal SMB Dissector Unspecified Remote Overflow Ethereal contains an unspecified buffer overflow related to the SMB dissector. No further details have been provided. |
| 18375 | Ethereal WBXML Dissector Null Pointer Dereference DoS |
| 18374 | Ethereal H1 Dissector Infinite Loop DoS Ethereal contains an unspecified flaw related to the H1 dissector that may allow an attacker to cause a denial of service by triggering an infinite loop. No further details have been provided. |
| 18373 | Ethereal BER Dissector Multiple Method DoS Ethereal contains a flaw related to the BER dissector that may allow an attacker to cause a denial of service via an abort or infinite loop. No further details have been provided. |
| 18372 | Ethereal MEGACO Dissector Infinite Loop DoS Ethereal contains an unspecified flaw related to the MEGACO dissector that may allow an attacker to cause a denial of service via an infinite loop. No further details have been provided. |
| 18371 | Ethereal PER Dissector Unspecified DoS Ethereal contains an unspecified flaw related to the PER dissector that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18370 | Ethereal RADIUS Dissector Unspecified DoS Ethereal contains an unspecified flaw related to the RADIUS dissector that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18369 | Ethereal Telnet Dissector Unspecified DoS Ethereal contains an unspecified flaw related to the Telnet dissector that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18368 | Ethereal IS-IS LSP Dissector Unspecified DoS Ethereal contains an unspecified flaw related to the IS-IS LSP dissector that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18367 | Ethereal NCP Dissector Unspecified DoS Ethereal contains an unspecified flaw related to the NCP dissector that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18366 | Ethereal DHCP Dissector Infinite Loop DoS Ethereal contains an unspecified flaw related to the DHCP dissector that may allow an attacker to cause a denial of service by sending the program into an infinite loop. No further details have been provided. |
| 18365 | Ethereal PER Dissector Unspecified DoS Ethereal contains an unspecified flaw related to the PER dissector that may allow an attacker to cause a denial of service. No further details have been provided. |
| 18364 | Ethereal 802.3 Dissector Infinite Loop DoS Ethereal contains an unspecified flaw that may allow a remote denial of service. The issue is related to the 802.3 dissector, which could go into an infinite loop and result in loss of availability for the application. |
| 18363 | Ethereal AgentX Dissector Unspecified DoS Ethereal contains an unspecified flaw related to the AgentX dissector that may allow an attacker to crash the program. No further details have been provided. |
| 18362 | Ethereal LDAP Dissector Unspecified Memory Free DoS Ethereal contains an unspecified flaw that may allow a remote denial of service. The issue could be triggered when the LDAP dissector frees static memory and crashes, and will result in loss of availability for the application. |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2006-07-03 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-687.nasl - Type : ACT_GATHER_INFO |
| 2005-10-11 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-853.nasl - Type : ACT_GATHER_INFO |
| 2005-10-05 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-131.nasl - Type : ACT_GATHER_INFO |
| 2005-08-12 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-687.nasl - Type : ACT_GATHER_INFO |
| 2005-07-31 | Name : The remote Fedora Core host is missing a security update. File : fedora_2005-651.nasl - Type : ACT_GATHER_INFO |
| 2005-07-31 | Name : The remote Fedora Core host is missing a security update. File : fedora_2005-655.nasl - Type : ACT_GATHER_INFO |
| 2005-07-31 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200507-27.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:49:36 |
|
