Ethereal PKIX1Explitit Dissector Remote Overflow

2005-05-04T14:02:08
ID OSVDB:16129
Type osvdb
Reporter OSVDB
Modified 2005-05-04T14:02:08

Description

Vulnerability Description

Ethereal contains a flaw related to the PKIX1Explitit dissector that may allow an attacker to execute arbitrary code by triggering an unspcified buffer overflow. No further details have been provided.

Solution Description

Upgrade to version 0.10.11 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Ethereal contains a flaw related to the PKIX1Explitit dissector that may allow an attacker to execute arbitrary code by triggering an unspcified buffer overflow. No further details have been provided.

References:

Vendor URL: http://www.ethereal.com/ Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Security Tracker: 1013889 Secunia Advisory ID:15144 Secunia Advisory ID:15280 Secunia Advisory ID:15314 Secunia Advisory ID:15629 Other Advisory URL: http://security.gentoo.org/glsa/glsa-200505-03.xml Other Advisory URL: http://rhn.redhat.com/errata/RHSA-2005-427.html Other Advisory URL: http://www.novell.com/linux/security/advisories/2005_14_sr.html Keyword: enpa-sa-00019 CVE-2005-1461 Bugtraq ID: 13504