Executive Summary
Summary | |
---|---|
Title | ethereal security update |
Informations | |||
---|---|---|---|
Name | RHSA-2005:809 | First vendor Publication | 2005-10-25 |
Vendor | RedHat | Last vendor Modification | 2005-10-25 |
Severity (Vendor) | Moderate | Revision | 01 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Problem Description: Updated Ethereal packages that fix various security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64 Red Hat Linux Advanced Workstation 2.1 - ia64 Red Hat Enterprise Linux ES version 2.1 - i386 Red Hat Enterprise Linux WS version 2.1 - i386 Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 3. Problem description: The ethereal package is a program for monitoring network traffic. A number of security flaws have been discovered in Ethereal. On a system where Ethereal is running, a remote attacker could send malicious packets to trigger these flaws and cause Ethereal to crash or potentially execute arbitrary code. The Common Vulnerabilities and Exposures project has assigned the names CVE-2005-3241, CVE-2005-3242, CVE-2005-3243, CVE-2005-3244, CVE-2005-3245, CVE-2005-3246, CVE-2005-3247, CVE-2005-3248, CVE-2005-3249, and CVE-2005-3184 to these issues. Users of ethereal should upgrade to these updated packages, which contain version 0.10.13 and are not vulnerable to these issues. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command: up2date For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system: http://www.redhat.com/docs/manuals/enterprise/ 5. Bug IDs fixed (http://bugzilla.redhat.com/): 171062 - CVE-2005-3241 Multiple ethereal issues (CVE-2005-3242 CVE-2005-3243 CVE-2005-3244 CVE-2005-3245 CVE-2005-3246 CVE-2005-3247 CVE-2005-3248 CVE-2005-3249 CVE-2005-3184) |
Original Source
Url : https://rhn.redhat.com/errata/RHSA-2005-809.html |
CAPEC : Common Attack Pattern Enumeration & Classification
Id | Name |
---|---|
CAPEC-47 | Buffer Overflow via Parameter Expansion |
CWE : Common Weakness Enumeration
% | Id | Name |
---|
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:10074 | |||
Oval ID: | oval:org.mitre.oval:def:10074 | ||
Title: | Buffer overflow vulnerability in the unicode_to_bytes in the Service Location Protocol (srvloc) dissector (packet-srvloc.c) in Ethereal allows remote attackers to execute arbitrary code via a srvloc packet with a modified length value. | ||
Description: | Buffer overflow vulnerability in the unicode_to_bytes in the Service Location Protocol (srvloc) dissector (packet-srvloc.c) in Ethereal allows remote attackers to execute arbitrary code via a srvloc packet with a modified length value. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3184 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:10241 | |||
Oval ID: | oval:org.mitre.oval:def:10241 | ||
Title: | The SigComp UDVM in Ethereal 0.10.12 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors. | ||
Description: | The SigComp UDVM in Ethereal 0.10.12 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3247 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:10303 | |||
Oval ID: | oval:org.mitre.oval:def:10303 | ||
Title: | Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (null dereference) via unknown vectors in the (1) SCSI, (2) sFlow, or (3) RTnet dissectors. | ||
Description: | Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (null dereference) via unknown vectors in the (1) SCSI, (2) sFlow, or (3) RTnet dissectors. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3246 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:10558 | |||
Oval ID: | oval:org.mitre.oval:def:10558 | ||
Title: | Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (crash) via unknown vectors in (1) the IrDA dissector and (2) the SMB dissector when SMB transaction payload reassembly is enabled. | ||
Description: | Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (crash) via unknown vectors in (1) the IrDA dissector and (2) the SMB dissector when SMB transaction payload reassembly is enabled. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3242 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:10582 | |||
Oval ID: | oval:org.mitre.oval:def:10582 | ||
Title: | Multiple vulnerabilities in Ethereal 0.10.12 and earlier allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors in the (1) ISAKMP, (2) FC-FCS, (3) RSVP, and (4) ISIS LSP dissector. | ||
Description: | Multiple vulnerabilities in Ethereal 0.10.12 and earlier allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors in the (1) ISAKMP, (2) FC-FCS, (3) RSVP, and (4) ISIS LSP dissector. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3241 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11002 | |||
Oval ID: | oval:org.mitre.oval:def:11002 | ||
Title: | Unspecified vulnerability in the X11 dissector in Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (divide-by-zero) via unknown vectors. | ||
Description: | Unspecified vulnerability in the X11 dissector in Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (divide-by-zero) via unknown vectors. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3248 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11060 | |||
Oval ID: | oval:org.mitre.oval:def:11060 | ||
Title: | Unspecified vulnerability in the ONC RPC dissector in Ethereal 0.10.3 to 0.10.12, when the "Dissect unknown RPC program numbers" option is enabled, allows remote attackers to cause a denial of service (memory consumption). | ||
Description: | Unspecified vulnerability in the ONC RPC dissector in Ethereal 0.10.3 to 0.10.12, when the "Dissect unknown RPC program numbers" option is enabled, allows remote attackers to cause a denial of service (memory consumption). | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3245 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:9313 | |||
Oval ID: | oval:org.mitre.oval:def:9313 | ||
Title: | Unspecified vulnerability in the WSP dissector in Ethereal 0.10.1 to 0.10.12 allows remote attackers to cause a denial of service or corrupt memory via unknown vectors that cause Ethereal to free an invalid pointer. | ||
Description: | Unspecified vulnerability in the WSP dissector in Ethereal 0.10.1 to 0.10.12 allows remote attackers to cause a denial of service or corrupt memory via unknown vectors that cause Ethereal to free an invalid pointer. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3249 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:9665 | |||
Oval ID: | oval:org.mitre.oval:def:9665 | ||
Title: | The BER dissector in Ethereal 0.10.3 to 0.10.12 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors. | ||
Description: | The BER dissector in Ethereal 0.10.3 to 0.10.12 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3244 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:9836 | |||
Oval ID: | oval:org.mitre.oval:def:9836 | ||
Title: | Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute arbitrary code via unknown vectors in the (1) SLIMP3 and (2) AgentX dissector. | ||
Description: | Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute arbitrary code via unknown vectors in the (1) SLIMP3 and (2) AgentX dissector. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3243 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2009-10-10 | Name : SLES9: Security update for ethereal File : nvt/sles9p5021746.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200510-25 (Ethereal) File : nvt/glsa_200510_25.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 1171-1 (ethereal) File : nvt/deb_1171_1.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
20137 | Ethereal SRVLOC Dissector Remote Overflow A remote overflow exists in Ethereal. The SVRLOC dissector fails to validate user-supplied data to the byte_array array resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
20136 | Ethereal WSP Dissector Invalid Pointer DoS Ethereal contains a flaw related to the WSP dissector that could free an invalid pointer, which may allow a remote attacker to cause a denial of service. No further details have been provided. |
20135 | Ethereal AgentX Dissector Remote Overflow Ethereal contains an unspecified flaw related to a buffer overflow in the AgentX dissector that may allow an attacker to execute arbitrary code. No further details have been provided. |
20134 | Ethereal X11 Dissector Divide by Zero DoS Ethereal contains a flaw related to the X11 dissector that results in a divide by zero error, which may allow a remote attacker to cause a denial of service. No further details have been provided. |
20133 | Ethereal SMB Dissector Transaction Payload Reassembly DoS Ethereal contains a flaw related to the SMB transaction payload reassembly preference, which may allow a remote attacker to crash the SMB dissector. No further details have been provided. Note: this preference is disabled by default. |
20132 | Ethereal SigComp UDVM Infinite Loop DoS Ethereal contains a flaw related to the SigComp UDVM protocol that may allow a remote attacker to cause the application to enter an infinite loop. No further details have been provided. |
20131 | Ethereal RTnet Dissector Null Pointer Dereference DoS Ethereal contains a flaw related to the RTnet dissector that could dereference a null pointer, which may allow a remote attacker to crash the application. No further details have been provided. |
20130 | Ethereal sFlow Dissector Null Pointer Dereference DoS Ethereal contains a flaw related to the sFlow dissector that could dereference a null pointer, which may allow a remote attacker to crash the application. No further details have been provided. |
20129 | Ethereal ONC RPC Dissector Memory Exhaustion DoS Ethereal contains a flaw related to the 'Dissect unknown RPC program numbers' option that may allow a remote attacker to cause the ONC RPC dissector to consume all available system memory. No further details have been provided. Note: this option is disabled by default. |
20128 | Ethereal SCSI Dissector Null Pointer Dereference DoS Ethereal contains a flaw related to the SCSI dissector that could dereference a null pointer, which may allow a remote attacker to crash the application. No further details have been provided. |
20127 | Ethereal BER Dissector Infinite Loop DoS Ethereal contains a flaw related to the BER dissector that may allow a remote attacker to cause the application to enter an infinite loop. No further details have been provided. |
20126 | Ethereal SLIMP3 Dissector Remote Overflow Ethereal contains an unspecified flaw related to the SLIMP3 dissector that may allow an attacker to execute arbitrary code. No further details have been provided. |
20125 | Ethereal IrDA Dissector Unspecified DoS Ethereal contains a flaw related to the IrDA dissector that may allow a remote attacker to cause a denial of service. No further details have been provided. |
20124 | Ethereal ISIS LSP Dissector Memory Exhaustion DoS Ethereal contains a flaw related to the ISIS LSP dissector that may allow a remote attacker to cause the application to consume all available system memory. No further details have been provided. |
20123 | Ethereal RSVP Dissector Memory Exhaustion DoS Ethereal contains a flaw related to the RSVP dissector that may allow a remote attacker to cause the application to consume all available system memory. No further details have been provided. |
20122 | Ethereal FC-FCS Dissector Memory Exhaustion DoS Ethereal contains a flaw related to the FC-FCS dissector that may allow a remote attacker to cause the application to consume all available system memory. No further details have been provided. |
20121 | Ethereal ISAKMP Dissector Memory Exhaustion DoS Ethereal contains a flaw related to the ISAKMP dissector that may allow a remote attacker to cause the application to consume all available system memory. No further details have been provided. |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2006-10-14 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1171.nasl - Type : ACT_GATHER_INFO |
2006-07-03 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-809.nasl - Type : ACT_GATHER_INFO |
2006-01-15 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-193.nasl - Type : ACT_GATHER_INFO |
2005-11-02 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200510-25.nasl - Type : ACT_GATHER_INFO |
2005-10-28 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-809.nasl - Type : ACT_GATHER_INFO |
2005-10-24 | Name : The remote Fedora Core host is missing a security update. File : fedora_2005-1008.nasl - Type : ACT_GATHER_INFO |
2005-10-24 | Name : The remote Fedora Core host is missing a security update. File : fedora_2005-1011.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:49:44 |
|