Executive Summary
Summary | |
---|---|
Title | ethereal security update |
Informations | |||
---|---|---|---|
Name | RHSA-2006:0156 | First vendor Publication | 2006-01-11 |
Vendor | RedHat | Last vendor Modification | 2006-01-11 |
Severity (Vendor) | Moderate | Revision | 01 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C) | |||
---|---|---|---|
Cvss Base Score | 7.8 | Attack Range | Network |
Cvss Impact Score | 6.9 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Problem Description: Updated Ethereal packages that fix various security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64 Red Hat Linux Advanced Workstation 2.1 - ia64 Red Hat Enterprise Linux ES version 2.1 - i386 Red Hat Enterprise Linux WS version 2.1 - i386 Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 3. Problem description: Ethereal is a program for monitoring network traffic. Two denial of service bugs were found in Ethereal's IRC and GTP protocol dissectors. Ethereal could crash or stop responding if it reads a malformed IRC or GTP packet off the network. The Common Vulnerabilities and Exposures project (cve.mitre.org) assigned the names CVE-2005-3313 and CVE-2005-4585 to these issues. A buffer overflow bug was found in Ethereal's OSPF protocol dissector. Ethereal could crash or execute arbitrary code if it reads a malformed OSPF packet off the network. (CVE-2005-3651) Users of ethereal should upgrade to these updated packages containing version 0.10.14, which is not vulnerable to these issues. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. 5. Bug IDs fixed (http://bugzilla.redhat.com/): 172297 - CVE-2005-3313 Ethereal IRC dissector DoS 176828 - CVE-2005-4585 ethereal GTP dissector could go into an infinite loop 176940 - CVE-2005-3651 ethereal OSPF Protocol Dissector Buffer Overflow Vulnerability |
Original Source
Url : https://rhn.redhat.com/errata/RHSA-2006-0156.html |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:10616 | |||
Oval ID: | oval:org.mitre.oval:def:10616 | ||
Title: | The IRC protocol dissector in Ethereal 0.10.13 allows remote attackers to cause a denial of service (infinite loop). | ||
Description: | The IRC protocol dissector in Ethereal 0.10.13 allows remote attackers to cause a denial of service (infinite loop). | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3313 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11286 | |||
Oval ID: | oval:org.mitre.oval:def:11286 | ||
Title: | Stack-based buffer overflow in the dissect_ospf_v3_address_prefix function in the OSPF protocol dissector in Ethereal 0.10.12, and possibly other versions, allows remote attackers to execute arbitrary code via crafted packets. | ||
Description: | Stack-based buffer overflow in the dissect_ospf_v3_address_prefix function in the OSPF protocol dissector in Ethereal 0.10.12, and possibly other versions, allows remote attackers to execute arbitrary code via crafted packets. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-3651 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:9678 | |||
Oval ID: | oval:org.mitre.oval:def:9678 | ||
Title: | Unspecified vulnerability in the GTP dissector for Ethereal 0.9.1 to 0.10.13 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors. | ||
Description: | Unspecified vulnerability in the GTP dissector for Ethereal 0.9.1 to 0.10.13 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-4585 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2009-10-10 | Name : SLES9: Security update for ethereal File : nvt/sles9p5013481.nasl |
2009-10-10 | Name : SLES9: Security update for ethereal File : nvt/sles9p5021746.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200510-25 (Ethereal) File : nvt/glsa_200510_25.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200512-06 (Ethereal) File : nvt/glsa_200512_06.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 920-1 (ethereal) File : nvt/deb_920_1.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
22092 | Ethereal GTP Dissector Infinite Loop Remote DoS Ethereal contains a flaw that may allow a remote denial of service. The issue is caused due to an infinite loop error in the GTP protocol dissector, and will consume all CPU resources, resulting in loss of availability for the platform. |
21599 | Ethereal OSPF Protocol Dissector dissect_ospf_v3_address_prefix() Function Ov... |
20400 | Ethereal IRC Protocol Dissector Infinite Loop DoS |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2012-09-24 | Name : The remote Fedora Core host is missing a security update. File : fedora_2006-005.nasl - Type : ACT_GATHER_INFO |
2006-10-14 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-920.nasl - Type : ACT_GATHER_INFO |
2006-07-03 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2006-0156.nasl - Type : ACT_GATHER_INFO |
2006-01-15 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-193.nasl - Type : ACT_GATHER_INFO |
2006-01-15 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-227.nasl - Type : ACT_GATHER_INFO |
2006-01-15 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2006-002.nasl - Type : ACT_GATHER_INFO |
2006-01-15 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2006-0156.nasl - Type : ACT_GATHER_INFO |
2005-12-15 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200512-06.nasl - Type : ACT_GATHER_INFO |
2005-11-02 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200510-25.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:49:52 |
|