7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Several remote vulnerabilities have been discovered in the Ethereal network
scanner, which may lead to the execution of arbitrary code. The Common
Vulnerabilities and Exposures project identifies the following problems:
This update also fixes a 64 bit-specific regression in the ASN.1 decoder, which
was introduced in a previous DSA.
For the stable distribution (sarge) these problems have been fixed in
version 0.10.10-2sarge8.
For the unstable distribution (sid) these problems have been fixed in
version 0.99.2-5.1 of wireshark, the network sniffer formerly known as
ethereal.
We recommend that you upgrade your ethereal packages.
CPE | Name | Operator | Version |
---|---|---|---|
ethereal | eq | 0.10.10-2sarge4 | |
ethereal | eq | 0.10.10-2sarge5 | |
ethereal | eq | 0.10.10-2sarge2 | |
ethereal | eq | 0.10.10-2sarge3 | |
ethereal | eq | 0.10.10-2sarge6 |