Ethereal SMB Dissector dissect_ipc_state() Malformed Packet DoS

2005-05-04T14:02:08
ID OSVDB:16111
Type osvdb
Reporter OSVDB
Modified 2005-05-04T14:02:08

Description

Vulnerability Description

Ethereal contains a flaw that may allow a remote denial of service. The issue is triggered when a malformed UDP packet is handled by the dissect_ipc_state() function, and will result in loss of availability for the application.

Solution Description

Upgrade to version 0.10.11 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Ethereal contains a flaw that may allow a remote denial of service. The issue is triggered when a malformed UDP packet is handled by the dissect_ipc_state() function, and will result in loss of availability for the application.

References:

Vendor URL: http://www.ethereal.com/ Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Security Tracker: 1013889 Secunia Advisory ID:15144 Secunia Advisory ID:15280 Secunia Advisory ID:15314 Secunia Advisory ID:15629 Other Advisory URL: http://security.gentoo.org/glsa/glsa-200505-03.xml Other Advisory URL: http://rhn.redhat.com/errata/RHSA-2005-427.html Other Advisory URL: http://www.novell.com/linux/security/advisories/2005_14_sr.html Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-05/0118.html Keyword: enpa-sa-00019 Generic Exploit URL: http://nicob.net/mirrors/ethereal-SMB-DoS.c CVE-2005-1470 Bugtraq ID: 13504