ethereal -- multiple vulnerabilities

ID EFA1344B-5477-11D9-A9E7-0001020EED82
Type freebsd
Reporter FreeBSD
Modified 2004-12-14T00:00:00


An Ethreal Security Advisories reports:

Issues have been discovered in the following protocol dissectors:

Matthew Bing discovered a bug in DICOM dissection that could make Ethereal crash. An invalid RTP timestamp could make Ethereal hang and create a large temporary file, possibly filling available disk space. The HTTP dissector could access previously-freed memory, causing a crash. Brian Caswell discovered that an improperly formatted SMB packet could make Ethereal hang, maximizing CPU utilization.

Impact: It may be possible to make Ethereal crash or run arbitrary code by injecting a purposefully malformed packet onto the wire or by convincing someone to read a malformed packet trace file.