Ethereal Malformed RTP Timestamp DoS

2004-12-15T04:47:31
ID OSVDB:12381
Type osvdb
Reporter OSVDB
Modified 2004-12-15T04:47:31

Description

Vulnerability Description

Ethereal contains a flaw that may allow a remote denial of service. The issue is triggered when Ethereal receives an invalid RTP timestamp that can create a large temporary file and potentially result in loss of availability for the system.

Solution Description

Upgrade to version 0.10.8 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround:

Disable the RTP protocol dissector by selecting Analyze->Enabled Protocols... and deselecting the RTP protocol from the list.

Short Description

Ethereal contains a flaw that may allow a remote denial of service. The issue is triggered when Ethereal receives an invalid RTP timestamp that can create a large temporary file and potentially result in loss of availability for the system.

References:

Vendor URL: http://www.ethereal.com/ Vendor Specific Advisory URL Secunia Advisory ID:13468 Secunia Advisory ID:13590 Secunia Advisory ID:14259 Secunia Advisory ID:13561 Related OSVDB ID: 12382 Related OSVDB ID: 12380 Related OSVDB ID: 12383 Other Advisory URL: ftp://patches.sgi.com/support/free/security/advisories/20050202-01-U.asc Other Advisory URL: http://www.ethereal.com/appnotes/enpa-sa-00016.html Other Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200412-15.xml Other Advisory URL: http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:152 CVE-2004-1140