ID OSVDB:2177 Type osvdb Reporter Timo Sirainen() Modified 2003-06-11T00:00:00
Description
Vulnerability Description
Ethereal contains a flaw that may allow a remote denial of service. The issue can be triggered when the SPNEGO dissector is used and an invalid ASN.1 value is parsed, and will result in loss of availability for the service.
Solution Description
Upgrade to version 0.9.13 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): disable the SPNEGO protocol dissector by selecting Analyze->Enabled Protocols... and deselecting the SPNEGO-KRB5 protocol from the list
Short Description
Ethereal contains a flaw that may allow a remote denial of service. The issue can be triggered when the SPNEGO dissector is used and an invalid ASN.1 value is parsed, and will result in loss of availability for the service.
{"lastseen": "2017-04-28T13:19:57", "references": [], "edition": 1, "description": "## Vulnerability Description\nEthereal contains a flaw that may allow a remote denial of service. The issue can be triggered when the SPNEGO dissector is used and an invalid ASN.1 value is parsed, and will result in loss of availability for the service.\n## Solution Description\nUpgrade to version 0.9.13 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): disable the SPNEGO protocol dissector by selecting Analyze->Enabled Protocols... and deselecting the SPNEGO-KRB5 protocol from the list\n## Short Description\nEthereal contains a flaw that may allow a remote denial of service. The issue can be triggered when the SPNEGO dissector is used and an invalid ASN.1 value is parsed, and will result in loss of availability for the service.\n## References:\n[Vendor Specific Advisory URL](http://www.ethereal.com/appnotes/enpa-sa-00010.html)\n[Vendor Specific Advisory URL](https://rhn.redhat.com/errata/RHSA-2003-203.html)\nSecurity Tracker: 1006974\n[Secunia Advisory ID:9007](https://secuniaresearch.flexerasoftware.com/advisories/9007/)\n[Related OSVDB ID: 4479](https://vulners.com/osvdb/OSVDB:4479)\n[Related OSVDB ID: 4477](https://vulners.com/osvdb/OSVDB:4477)\n[Related OSVDB ID: 4478](https://vulners.com/osvdb/OSVDB:4478)\n[Related OSVDB ID: 4480](https://vulners.com/osvdb/OSVDB:4480)\nISS X-Force ID: 12318\n[CVE-2003-0430](https://vulners.com/cve/CVE-2003-0430)\nBugtraq ID: 7879\n", "reporter": "Timo Sirainen()", "published": "2003-06-11T00:00:00", "type": "osvdb", "title": "Ethereal SPNEGO Dissector DoS", "enchantments": {"score": {"value": 4.8, "vector": "NONE", "modified": "2017-04-28T13:19:57", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2003-0430"]}, {"type": "osvdb", "idList": ["OSVDB:6905", "OSVDB:6133", "OSVDB:6901", "OSVDB:6906", "OSVDB:6902", "OSVDB:6903", "OSVDB:6900", "OSVDB:4480", "OSVDB:6904", "OSVDB:6899"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:5369"]}, {"type": "redhat", "idList": ["RHSA-2003:077"]}, {"type": "nessus", "idList": ["REDHAT-RHSA-2003-077.NASL"]}], "modified": "2017-04-28T13:19:57", "rev": 2}, "vulnersScore": 4.8}, "bulletinFamily": "software", "affectedSoftware": [{"operator": "eq", "version": "0.9.12", "name": "Ethereal"}, {"operator": "eq", "version": "0.9.10", "name": "Ethereal"}, {"operator": "eq", "version": "0.9.11", "name": "Ethereal"}, {"operator": "eq", "version": "0.9.7", "name": "Ethereal"}, {"operator": "eq", "version": "0.9.8", "name": "Ethereal"}, {"operator": "eq", "version": "0.9.9", "name": "Ethereal"}], "cvelist": ["CVE-2003-0430"], "modified": "2003-06-11T00:00:00", "href": "https://vulners.com/osvdb/OSVDB:2177", "viewCount": 3, "id": "OSVDB:2177", "cvss": {"vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/", "score": 5.0}}
{"cve": [{"lastseen": "2020-09-21T13:47:15", "description": "The SPNEGO dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (crash) via an invalid ASN.1 value.", "edition": 2, "cvss3": {}, "published": "2003-07-24T04:00:00", "title": "CVE-2003-0430", "type": "cve", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "PARTIAL", "integrityImpact": "NONE", "baseScore": 5.0, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2003-0430"], "modified": "2017-10-11T01:29:00", "cpe": ["cpe:/a:ethereal_group:ethereal:0.9.12"], "id": "CVE-2003-0430", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0430", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cpe23": ["cpe:2.3:a:ethereal_group:ethereal:0.9.12:*:*:*:*:*:*:*"]}], "osvdb": [{"lastseen": "2017-04-28T13:20:00", "bulletinFamily": "software", "cvelist": ["CVE-2003-0430"], "edition": 1, "description": "## Vulnerability Description\nEthereal contains a flaw that may allow a remote denial of service. The issue is triggered by sending malformed traffic which causes a null pointer dereference in the SPNEGO dissector, and will result in loss of availability for the product.\n\n\n## Solution Description\nUpgrade to version 0.10.4 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): disable SPNEGO protocol dissector\n## Short Description\nEthereal contains a flaw that may allow a remote denial of service. The issue is triggered by sending malformed traffic which causes a null pointer dereference in the SPNEGO dissector, and will result in loss of availability for the product.\n\n\n## References:\n[Vendor Specific Advisory URL](http://www.gentoo.org/security/en/glsa/glsa-200406-01.xml)\nSecurity Tracker: 1010158\n[Secunia Advisory ID:11608](https://secuniaresearch.flexerasoftware.com/advisories/11608/)\n[Secunia Advisory ID:11776](https://secuniaresearch.flexerasoftware.com/advisories/11776/)\n[Related OSVDB ID: 6131](https://vulners.com/osvdb/OSVDB:6131)\n[Related OSVDB ID: 6134](https://vulners.com/osvdb/OSVDB:6134)\n[Related OSVDB ID: 6132](https://vulners.com/osvdb/OSVDB:6132)\nOther Advisory URL: http://www.ethereal.com/appnotes/enpa-sa-00014.html\nISS X-Force ID: 16151\n[CVE-2003-0430](https://vulners.com/cve/CVE-2003-0430)\nBugtraq ID: 10347\n", "modified": "2004-05-14T02:02:05", "published": "2004-05-14T02:02:05", "href": "https://vulners.com/osvdb/OSVDB:6133", "id": "OSVDB:6133", "type": "osvdb", "title": "Ethereal SPNEGO Dissector DoS", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:19:59", "bulletinFamily": "software", "cvelist": ["CVE-2003-0432", "CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0430"], "edition": 1, "description": "## Vulnerability Description\nEthereal contains a flaw related to the string handling in the BGP Dissector. No further details have been provided.\n## Solution Description\nUpgrade to version 0.9.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nEthereal contains a flaw related to the string handling in the BGP Dissector. No further details have been provided.\n## References:\n[Vendor Specific Advisory URL](http://www.ethereal.com/appnotes/enpa-sa-00010.html)\n[Secunia Advisory ID:9007](https://secuniaresearch.flexerasoftware.com/advisories/9007/)\n[Related OSVDB ID: 6903](https://vulners.com/osvdb/OSVDB:6903)\n[Related OSVDB ID: 4479](https://vulners.com/osvdb/OSVDB:4479)\n[Related OSVDB ID: 6906](https://vulners.com/osvdb/OSVDB:6906)\n[Related OSVDB ID: 2177](https://vulners.com/osvdb/OSVDB:2177)\n[Related OSVDB ID: 4477](https://vulners.com/osvdb/OSVDB:4477)\n[Related OSVDB ID: 4478](https://vulners.com/osvdb/OSVDB:4478)\n[Related OSVDB ID: 6900](https://vulners.com/osvdb/OSVDB:6900)\n[Related OSVDB ID: 6901](https://vulners.com/osvdb/OSVDB:6901)\n[Related OSVDB ID: 6902](https://vulners.com/osvdb/OSVDB:6902)\n[Related OSVDB ID: 6899](https://vulners.com/osvdb/OSVDB:6899)\n[Related OSVDB ID: 6904](https://vulners.com/osvdb/OSVDB:6904)\n[Related OSVDB ID: 6905](https://vulners.com/osvdb/OSVDB:6905)\n[CVE-2003-0430](https://vulners.com/cve/CVE-2003-0430)\n[CVE-2003-0429](https://vulners.com/cve/CVE-2003-0429)\n[CVE-2003-0431](https://vulners.com/cve/CVE-2003-0431)\n[CVE-2003-0432](https://vulners.com/cve/CVE-2003-0432)\n[CVE-2003-0428](https://vulners.com/cve/CVE-2003-0428)\n", "modified": "2003-06-11T16:55:21", "published": "2003-06-11T16:55:21", "href": "https://vulners.com/osvdb/OSVDB:4480", "id": "OSVDB:4480", "type": "osvdb", "title": "Ethereal BGP Dissector String Handling Flaw", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:01", "bulletinFamily": "software", "cvelist": ["CVE-2003-0432", "CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0430"], "edition": 1, "description": "## Vulnerability Description\nEthereal contains a flaw related to the string handling in the ISIS Dissector. No further details have been provided.\n## Solution Description\nUpgrade to version 0.9.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nEthereal contains a flaw related to the string handling in the ISIS Dissector. No further details have been provided.\n## References:\n[Vendor Specific Advisory URL](http://www.ethereal.com/appnotes/enpa-sa-00010.html)\n[Secunia Advisory ID:9007](https://secuniaresearch.flexerasoftware.com/advisories/9007/)\n[Related OSVDB ID: 6903](https://vulners.com/osvdb/OSVDB:6903)\n[Related OSVDB ID: 4479](https://vulners.com/osvdb/OSVDB:4479)\n[Related OSVDB ID: 6906](https://vulners.com/osvdb/OSVDB:6906)\n[Related OSVDB ID: 2177](https://vulners.com/osvdb/OSVDB:2177)\n[Related OSVDB ID: 4477](https://vulners.com/osvdb/OSVDB:4477)\n[Related OSVDB ID: 4478](https://vulners.com/osvdb/OSVDB:4478)\n[Related OSVDB ID: 4480](https://vulners.com/osvdb/OSVDB:4480)\n[Related OSVDB ID: 6900](https://vulners.com/osvdb/OSVDB:6900)\n[Related OSVDB ID: 6901](https://vulners.com/osvdb/OSVDB:6901)\n[Related OSVDB ID: 6902](https://vulners.com/osvdb/OSVDB:6902)\n[Related OSVDB ID: 6899](https://vulners.com/osvdb/OSVDB:6899)\n[Related OSVDB ID: 6904](https://vulners.com/osvdb/OSVDB:6904)\n[CVE-2003-0430](https://vulners.com/cve/CVE-2003-0430)\n[CVE-2003-0429](https://vulners.com/cve/CVE-2003-0429)\n[CVE-2003-0431](https://vulners.com/cve/CVE-2003-0431)\n[CVE-2003-0432](https://vulners.com/cve/CVE-2003-0432)\n[CVE-2003-0428](https://vulners.com/cve/CVE-2003-0428)\n", "modified": "2003-06-11T16:55:21", "published": "2003-06-11T16:55:21", "href": "https://vulners.com/osvdb/OSVDB:6905", "id": "OSVDB:6905", "title": "Ethereal ISIS Dissector String Handling Flaw", "type": "osvdb", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:01", "bulletinFamily": "software", "cvelist": ["CVE-2003-0432", "CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0430"], "edition": 1, "description": "## Vulnerability Description\nEthereal contains a flaw related to the string handling in the 802.11 Dissector. No further details have been provided.\n## Solution Description\nUpgrade to version 0.9.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nEthereal contains a flaw related to the string handling in the 802.11 Dissector. No further details have been provided.\n## References:\n[Vendor Specific Advisory URL](http://www.ethereal.com/appnotes/enpa-sa-00010.html)\n[Secunia Advisory ID:9007](https://secuniaresearch.flexerasoftware.com/advisories/9007/)\n[Related OSVDB ID: 6903](https://vulners.com/osvdb/OSVDB:6903)\n[Related OSVDB ID: 4479](https://vulners.com/osvdb/OSVDB:4479)\n[Related OSVDB ID: 6906](https://vulners.com/osvdb/OSVDB:6906)\n[Related OSVDB ID: 2177](https://vulners.com/osvdb/OSVDB:2177)\n[Related OSVDB ID: 4477](https://vulners.com/osvdb/OSVDB:4477)\n[Related OSVDB ID: 4478](https://vulners.com/osvdb/OSVDB:4478)\n[Related OSVDB ID: 4480](https://vulners.com/osvdb/OSVDB:4480)\n[Related OSVDB ID: 6900](https://vulners.com/osvdb/OSVDB:6900)\n[Related OSVDB ID: 6902](https://vulners.com/osvdb/OSVDB:6902)\n[Related OSVDB ID: 6899](https://vulners.com/osvdb/OSVDB:6899)\n[Related OSVDB ID: 6904](https://vulners.com/osvdb/OSVDB:6904)\n[Related OSVDB ID: 6905](https://vulners.com/osvdb/OSVDB:6905)\n[CVE-2003-0430](https://vulners.com/cve/CVE-2003-0430)\n[CVE-2003-0429](https://vulners.com/cve/CVE-2003-0429)\n[CVE-2003-0431](https://vulners.com/cve/CVE-2003-0431)\n[CVE-2003-0432](https://vulners.com/cve/CVE-2003-0432)\n[CVE-2003-0428](https://vulners.com/cve/CVE-2003-0428)\n", "modified": "2003-06-11T16:55:21", "published": "2003-06-11T16:55:21", "href": "https://vulners.com/osvdb/OSVDB:6901", "id": "OSVDB:6901", "title": "Ethereal 802.11 Dissector String Handling Flaw", "type": "osvdb", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:01", "bulletinFamily": "software", "cvelist": ["CVE-2003-0432", "CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0430"], "edition": 1, "description": "## Vulnerability Description\nEthereal contains a flaw related to the string handling in the WTP Dissector. No further details have been provided.\n## Solution Description\nUpgrade to version 0.9.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nEthereal contains a flaw related to the string handling in the WTP Dissector. No further details have been provided.\n## References:\n[Vendor Specific Advisory URL](http://www.ethereal.com/appnotes/enpa-sa-00010.html)\n[Secunia Advisory ID:9007](https://secuniaresearch.flexerasoftware.com/advisories/9007/)\n[Related OSVDB ID: 6903](https://vulners.com/osvdb/OSVDB:6903)\n[Related OSVDB ID: 4479](https://vulners.com/osvdb/OSVDB:4479)\n[Related OSVDB ID: 6906](https://vulners.com/osvdb/OSVDB:6906)\n[Related OSVDB ID: 2177](https://vulners.com/osvdb/OSVDB:2177)\n[Related OSVDB ID: 4477](https://vulners.com/osvdb/OSVDB:4477)\n[Related OSVDB ID: 4478](https://vulners.com/osvdb/OSVDB:4478)\n[Related OSVDB ID: 4480](https://vulners.com/osvdb/OSVDB:4480)\n[Related OSVDB ID: 6900](https://vulners.com/osvdb/OSVDB:6900)\n[Related OSVDB ID: 6901](https://vulners.com/osvdb/OSVDB:6901)\n[Related OSVDB ID: 6902](https://vulners.com/osvdb/OSVDB:6902)\n[Related OSVDB ID: 6904](https://vulners.com/osvdb/OSVDB:6904)\n[Related OSVDB ID: 6905](https://vulners.com/osvdb/OSVDB:6905)\n[CVE-2003-0430](https://vulners.com/cve/CVE-2003-0430)\n[CVE-2003-0429](https://vulners.com/cve/CVE-2003-0429)\n[CVE-2003-0431](https://vulners.com/cve/CVE-2003-0431)\n[CVE-2003-0432](https://vulners.com/cve/CVE-2003-0432)\n[CVE-2003-0428](https://vulners.com/cve/CVE-2003-0428)\n", "modified": "2003-06-11T16:55:21", "published": "2003-06-11T16:55:21", "href": "https://vulners.com/osvdb/OSVDB:6899", "id": "OSVDB:6899", "title": "Ethereal WTP Dissector String Handling Flaw", "type": "osvdb", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:01", "bulletinFamily": "software", "cvelist": ["CVE-2003-0432", "CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0430"], "edition": 1, "description": "## Vulnerability Description\nEthereal contains a flaw related to the string handling in the DNS Dissector. No further details have been provided.\n## Solution Description\nUpgrade to version 0.9.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nEthereal contains a flaw related to the string handling in the DNS Dissector. No further details have been provided.\n## References:\n[Vendor Specific Advisory URL](http://www.ethereal.com/appnotes/enpa-sa-00010.html)\n[Secunia Advisory ID:9007](https://secuniaresearch.flexerasoftware.com/advisories/9007/)\n[Related OSVDB ID: 6903](https://vulners.com/osvdb/OSVDB:6903)\n[Related OSVDB ID: 4479](https://vulners.com/osvdb/OSVDB:4479)\n[Related OSVDB ID: 6906](https://vulners.com/osvdb/OSVDB:6906)\n[Related OSVDB ID: 2177](https://vulners.com/osvdb/OSVDB:2177)\n[Related OSVDB ID: 4477](https://vulners.com/osvdb/OSVDB:4477)\n[Related OSVDB ID: 4478](https://vulners.com/osvdb/OSVDB:4478)\n[Related OSVDB ID: 4480](https://vulners.com/osvdb/OSVDB:4480)\n[Related OSVDB ID: 6901](https://vulners.com/osvdb/OSVDB:6901)\n[Related OSVDB ID: 6902](https://vulners.com/osvdb/OSVDB:6902)\n[Related OSVDB ID: 6899](https://vulners.com/osvdb/OSVDB:6899)\n[Related OSVDB ID: 6904](https://vulners.com/osvdb/OSVDB:6904)\n[Related OSVDB ID: 6905](https://vulners.com/osvdb/OSVDB:6905)\n[CVE-2003-0430](https://vulners.com/cve/CVE-2003-0430)\n[CVE-2003-0429](https://vulners.com/cve/CVE-2003-0429)\n[CVE-2003-0431](https://vulners.com/cve/CVE-2003-0431)\n[CVE-2003-0432](https://vulners.com/cve/CVE-2003-0432)\n[CVE-2003-0428](https://vulners.com/cve/CVE-2003-0428)\n", "modified": "2003-06-11T16:55:21", "published": "2003-06-11T16:55:21", "id": "OSVDB:6900", "href": "https://vulners.com/osvdb/OSVDB:6900", "title": "Ethereal DNS Dissector String Handling Flaw", "type": "osvdb", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:01", "bulletinFamily": "software", "cvelist": ["CVE-2003-0432", "CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0430"], "edition": 1, "description": "## Vulnerability Description\nEthereal contains a flaw related to the string handling in the ISAKMP Dissector. No further details have been provided.\n## Solution Description\nUpgrade to version 0.9.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nEthereal contains a flaw related to the string handling in the ISAKMP Dissector. No further details have been provided.\n## References:\n[Vendor Specific Advisory URL](http://www.ethereal.com/appnotes/enpa-sa-00010.html)\n[Secunia Advisory ID:9007](https://secuniaresearch.flexerasoftware.com/advisories/9007/)\n[Related OSVDB ID: 6903](https://vulners.com/osvdb/OSVDB:6903)\n[Related OSVDB ID: 4479](https://vulners.com/osvdb/OSVDB:4479)\n[Related OSVDB ID: 6906](https://vulners.com/osvdb/OSVDB:6906)\n[Related OSVDB ID: 2177](https://vulners.com/osvdb/OSVDB:2177)\n[Related OSVDB ID: 4477](https://vulners.com/osvdb/OSVDB:4477)\n[Related OSVDB ID: 4478](https://vulners.com/osvdb/OSVDB:4478)\n[Related OSVDB ID: 4480](https://vulners.com/osvdb/OSVDB:4480)\n[Related OSVDB ID: 6900](https://vulners.com/osvdb/OSVDB:6900)\n[Related OSVDB ID: 6901](https://vulners.com/osvdb/OSVDB:6901)\n[Related OSVDB ID: 6899](https://vulners.com/osvdb/OSVDB:6899)\n[Related OSVDB ID: 6904](https://vulners.com/osvdb/OSVDB:6904)\n[Related OSVDB ID: 6905](https://vulners.com/osvdb/OSVDB:6905)\n[CVE-2003-0430](https://vulners.com/cve/CVE-2003-0430)\n[CVE-2003-0429](https://vulners.com/cve/CVE-2003-0429)\n[CVE-2003-0431](https://vulners.com/cve/CVE-2003-0431)\n[CVE-2003-0432](https://vulners.com/cve/CVE-2003-0432)\n[CVE-2003-0428](https://vulners.com/cve/CVE-2003-0428)\n", "modified": "2003-06-11T16:55:21", "published": "2003-06-11T16:55:21", "id": "OSVDB:6902", "href": "https://vulners.com/osvdb/OSVDB:6902", "title": "Ethereal ISAKMP Dissector String Handling Flaw", "type": "osvdb", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:01", "bulletinFamily": "software", "cvelist": ["CVE-2003-0432", "CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0430"], "edition": 1, "description": "## Vulnerability Description\nEthereal contains a flaw related to the string handling in the RMI Dissector. No further details have been provided.\n## Solution Description\nUpgrade to version 0.9.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nEthereal contains a flaw related to the string handling in the RMI Dissector. No further details have been provided.\n## References:\n[Vendor Specific Advisory URL](http://www.ethereal.com/appnotes/enpa-sa-00010.html)\n[Secunia Advisory ID:9007](https://secuniaresearch.flexerasoftware.com/advisories/9007/)\n[Related OSVDB ID: 6903](https://vulners.com/osvdb/OSVDB:6903)\n[Related OSVDB ID: 4479](https://vulners.com/osvdb/OSVDB:4479)\n[Related OSVDB ID: 2177](https://vulners.com/osvdb/OSVDB:2177)\n[Related OSVDB ID: 4477](https://vulners.com/osvdb/OSVDB:4477)\n[Related OSVDB ID: 4478](https://vulners.com/osvdb/OSVDB:4478)\n[Related OSVDB ID: 4480](https://vulners.com/osvdb/OSVDB:4480)\n[Related OSVDB ID: 6900](https://vulners.com/osvdb/OSVDB:6900)\n[Related OSVDB ID: 6901](https://vulners.com/osvdb/OSVDB:6901)\n[Related OSVDB ID: 6902](https://vulners.com/osvdb/OSVDB:6902)\n[Related OSVDB ID: 6899](https://vulners.com/osvdb/OSVDB:6899)\n[Related OSVDB ID: 6904](https://vulners.com/osvdb/OSVDB:6904)\n[Related OSVDB ID: 6905](https://vulners.com/osvdb/OSVDB:6905)\n[CVE-2003-0430](https://vulners.com/cve/CVE-2003-0430)\n[CVE-2003-0429](https://vulners.com/cve/CVE-2003-0429)\n[CVE-2003-0431](https://vulners.com/cve/CVE-2003-0431)\n[CVE-2003-0432](https://vulners.com/cve/CVE-2003-0432)\n[CVE-2003-0428](https://vulners.com/cve/CVE-2003-0428)\n", "modified": "2003-06-11T16:55:21", "published": "2003-06-11T16:55:21", "id": "OSVDB:6906", "href": "https://vulners.com/osvdb/OSVDB:6906", "title": "Ethereal RMI Dissector String Handling Flaw", "type": "osvdb", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:01", "bulletinFamily": "software", "cvelist": ["CVE-2003-0432", "CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0430"], "edition": 1, "description": "## Vulnerability Description\nEthereal contains a flaw related to the string handling in the CLNP Dissector. No further details have been provided.\n## Solution Description\nUpgrade to version 0.9.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nEthereal contains a flaw related to the string handling in the CLNP Dissector. No further details have been provided.\n## References:\n[Vendor Specific Advisory URL](http://www.ethereal.com/appnotes/enpa-sa-00010.html)\n[Secunia Advisory ID:9007](https://secuniaresearch.flexerasoftware.com/advisories/9007/)\n[Related OSVDB ID: 6903](https://vulners.com/osvdb/OSVDB:6903)\n[Related OSVDB ID: 4479](https://vulners.com/osvdb/OSVDB:4479)\n[Related OSVDB ID: 6906](https://vulners.com/osvdb/OSVDB:6906)\n[Related OSVDB ID: 2177](https://vulners.com/osvdb/OSVDB:2177)\n[Related OSVDB ID: 4477](https://vulners.com/osvdb/OSVDB:4477)\n[Related OSVDB ID: 4478](https://vulners.com/osvdb/OSVDB:4478)\n[Related OSVDB ID: 4480](https://vulners.com/osvdb/OSVDB:4480)\n[Related OSVDB ID: 6900](https://vulners.com/osvdb/OSVDB:6900)\n[Related OSVDB ID: 6901](https://vulners.com/osvdb/OSVDB:6901)\n[Related OSVDB ID: 6902](https://vulners.com/osvdb/OSVDB:6902)\n[Related OSVDB ID: 6899](https://vulners.com/osvdb/OSVDB:6899)\n[Related OSVDB ID: 6905](https://vulners.com/osvdb/OSVDB:6905)\n[CVE-2003-0430](https://vulners.com/cve/CVE-2003-0430)\n[CVE-2003-0429](https://vulners.com/cve/CVE-2003-0429)\n[CVE-2003-0431](https://vulners.com/cve/CVE-2003-0431)\n[CVE-2003-0432](https://vulners.com/cve/CVE-2003-0432)\n[CVE-2003-0428](https://vulners.com/cve/CVE-2003-0428)\n", "modified": "2003-06-11T16:55:21", "published": "2003-06-11T16:55:21", "id": "OSVDB:6904", "href": "https://vulners.com/osvdb/OSVDB:6904", "title": "Ethereal CLNP Dissector String Handling Flaw", "type": "osvdb", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:01", "bulletinFamily": "software", "cvelist": ["CVE-2003-0432", "CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0430"], "edition": 1, "description": "## Vulnerability Description\nEthereal contains a flaw related to the string handling in the WSP Dissector. No further details have been provided.\n## Solution Description\nUpgrade to version 0.9.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nEthereal contains a flaw related to the string handling in the WSP Dissector. No further details have been provided.\n## References:\n[Vendor Specific Advisory URL](http://www.ethereal.com/appnotes/enpa-sa-00010.html)\n[Secunia Advisory ID:9007](https://secuniaresearch.flexerasoftware.com/advisories/9007/)\n[Related OSVDB ID: 4479](https://vulners.com/osvdb/OSVDB:4479)\n[Related OSVDB ID: 6906](https://vulners.com/osvdb/OSVDB:6906)\n[Related OSVDB ID: 2177](https://vulners.com/osvdb/OSVDB:2177)\n[Related OSVDB ID: 4477](https://vulners.com/osvdb/OSVDB:4477)\n[Related OSVDB ID: 4478](https://vulners.com/osvdb/OSVDB:4478)\n[Related OSVDB ID: 4480](https://vulners.com/osvdb/OSVDB:4480)\n[Related OSVDB ID: 6900](https://vulners.com/osvdb/OSVDB:6900)\n[Related OSVDB ID: 6901](https://vulners.com/osvdb/OSVDB:6901)\n[Related OSVDB ID: 6902](https://vulners.com/osvdb/OSVDB:6902)\n[Related OSVDB ID: 6899](https://vulners.com/osvdb/OSVDB:6899)\n[Related OSVDB ID: 6904](https://vulners.com/osvdb/OSVDB:6904)\n[Related OSVDB ID: 6905](https://vulners.com/osvdb/OSVDB:6905)\n[CVE-2003-0430](https://vulners.com/cve/CVE-2003-0430)\n[CVE-2003-0429](https://vulners.com/cve/CVE-2003-0429)\n[CVE-2003-0431](https://vulners.com/cve/CVE-2003-0431)\n[CVE-2003-0432](https://vulners.com/cve/CVE-2003-0432)\n[CVE-2003-0428](https://vulners.com/cve/CVE-2003-0428)\n", "modified": "2003-06-11T16:55:21", "published": "2003-06-11T16:55:21", "href": "https://vulners.com/osvdb/OSVDB:6903", "id": "OSVDB:6903", "title": "Ethereal WSP Dissector String Handling Flaw", "type": "osvdb", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:08", "bulletinFamily": "software", "cvelist": ["CVE-2003-0432", "CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0430"], "description": "\r\nTo: announce@lists.caldera.com bugtraq@securityfocus.com full-disclosure@lists.netsys.com\r\nsecurity-alerts@linuxsecurity.com\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n \r\n______________________________________________________________________________\r\n\r\n SCO Security Advisory\r\n\r\nSubject: OpenLinux: Multiple vulnerabilities have reported in Ethereal 0.9.12\r\nAdvisory number: CSSA-2003-030.0\r\nIssue date: 2003 November 07\r\nCross reference: sr883585 fz528203 erg712398 CAN-2003-0428 CAN-2003-0429 CAN-2003-0430\r\nCAN-2003-0431 CAN-2003-0432\r\n______________________________________________________________________________\r\n\r\n\r\n1. Problem Description\r\n\r\n Multiple vulnerabilities have reported in Ethereal 0.9.12. \r\n \r\n Ethereal is a freely available network protocol analyzer for \r\n Microsoft Windows and multiple Unix-based operating systems. \r\n \r\n Ethereal versions 0.9.12 and earlier are vulnerable to multiple \r\n issues. The Vulnerabilities are: \r\n \r\n 1. The DCERPC dissector could try to allocate too much memory \r\n while trying to decode an NDR string. The Common Vulnerabilities \r\n and Exposures project (cve.mitre.org) has assigned the following \r\n name CAN-2003-0428 to this issue. \r\n \r\n 2. Bad IPv4 or IPv6 prefix lengths could cause an overflow in the \r\n OSI dissector. The Common Vulnerabilities and Exposures project \r\n (cve.mitre.org) has assigned the following name CAN-2003-0429 to \r\n this issue. \r\n \r\n 3. The SPNEGO dissector could segfault while parsing an invalid \r\n ASN.1 value. The Common Vulnerabilities and Exposures project \r\n (cve.mitre.org) has assigned the following name CAN-2003-0430 \r\n to this issue. \r\n \r\n 4. The tvb_get_nstringz0() routine incorrectly handled a zero-\r\n length buffer size. The Common Vulnerabilities and Exposures \r\n project (cve.mitre.org) has assigned the following name \r\n CAN-2003-0431 to this issue. \r\n \r\n 5. The BGP, WTP, DNS, 802.11, ISAKMP, WSP, CLNP, ISIS, and RMI \r\n dissectors handled strings improperly. The Common Vulnerabilities \r\n and Exposures project (cve.mitre.org) has assigned the following \r\n name CAN-2003-0432 to this issue. \r\n \r\n POTENTIAL IMPACT \r\n It may be possible to make Ethereal crash or run arbitrary code\r\n by injecting a purposefully malformed packet onto the wire,\r\n or by convincing someone to read a malformed packet trace file.\r\n\r\n2. Vulnerable Supported Versions\r\n\r\n System Package\r\n -------------------------------------------------------------------\r\n OpenLinux 3.1.1 Server prior to ethereal-0.9.13-1.i386.rpm\r\n OpenLinux 3.1.1 Workstation prior to ethereal-0.9.13-1.i386.rpm\r\n\r\n3. Solution\r\n\r\n The proper solution is to install the latest packages. Many\r\n customers find it easier to use the Caldera System Updater, called\r\n cupdate (or kcupdate under the KDE environment), to update these\r\n packages rather than downloading and installing them by hand.\r\n\r\n4. OpenLinux 3.1.1 Server\r\n\r\n 4.1 Package Location\r\n\r\n ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2003-030.0/RPMS\r\n\r\n 4.2 Packages\r\n\r\n 9c5039a96d35a4bb91cddfa40adb7e2c ethereal-0.9.13-1.i386.rpm\r\n\r\n 4.3 Installation\r\n\r\n rpm -Fvh ethereal-0.9.13-1.i386.rpm\r\n\r\n 4.4 Source Package Location\r\n\r\n ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2003-030.0/SRPMS\r\n\r\n 4.5 Source Packages\r\n\r\n 991395b4b4bcf0375e7dfe6a09108faf ethereal-0.9.13-1.src.rpm\r\n\r\n\r\n5. OpenLinux 3.1.1 Workstation\r\n\r\n 5.1 Package Location\r\n\r\n ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2003-030.0/RPMS\r\n\r\n 5.2 Packages\r\n\r\n 9d87667d906a624fc6e05434187941c1 ethereal-0.9.13-1.i386.rpm\r\n\r\n 5.3 Installation\r\n\r\n rpm -Fvh ethereal-0.9.13-1.i386.rpm\r\n\r\n 5.4 Source Package Location\r\n\r\n ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2003-030.0/SRPMS\r\n\r\n 5.5 Source Packages\r\n\r\n 391d94b691aee0b3194583675c400cd7 ethereal-0.9.13-1.src.rpm\r\n\r\n\r\n6. References\r\n\r\n Specific references for this advisory:\r\n http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0428 \r\n http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0429\r\n http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0430\r\n http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0431\r\n http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0432\r\n\r\n SCO security resources:\r\n http://www.sco.com/support/security/index.html\r\n\r\n This security fix closes SCO incidents sr883585 fz528203\r\n erg712398.\r\n\r\n\r\n7. Disclaimer\r\n\r\n SCO is not responsible for the misuse of any of the information\r\n we provide on this website and/or through our security\r\n advisories. Our advisories are a service to our customers intended\r\n to promote secure installation and use of SCO products.\r\n\r\n______________________________________________________________________________\r\n\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.0.6 (GNU/Linux)\r\nComment: For info see http://www.gnupg.org\r\n\r\niEYEARECAAYFAj+sNhQACgkQbluZssSXDTEZMwCfUH9bcXlH1HwcxpnZp2+wIWvx\r\nCCEAoKkO/by2uLsop7CdEmSE2zvXUY/A\r\n=T8Uu\r\n-----END PGP SIGNATURE-----", "edition": 1, "modified": "2003-11-10T00:00:00", "published": "2003-11-10T00:00:00", "id": "SECURITYVULNS:DOC:5369", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:5369", "title": "OpenLinux: Multiple vulnerabilities have reported in Ethereal 0.9.12", "type": "securityvulns", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "redhat": [{"lastseen": "2019-08-13T18:45:29", "bulletinFamily": "unix", "cvelist": ["CVE-2003-0081", "CVE-2003-0159", "CVE-2003-0356", "CVE-2003-0357", "CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0430", "CVE-2003-0431", "CVE-2003-0432"], "description": "Ethereal is a package designed for monitoring network traffic.\n\nA number of security issues affect Ethereal. By exploiting these issues it\nmay be possible to make Ethereal crash or run arbitrary code by injecting a\npurposefully malformed packet onto the wire, or by convincing someone to\nread a malformed packet trace file.\n\nEthereal 0.9.9 and earlier allows remote attackers to cause a denial\nof service (crash) and possibly execute arbitrary code via carefully\ncrafted SOCKS packets. The Common Vulnerabilities and Exposures project\n(cve.mitre.org) has assigned the name CAN-2003-0081 to this issue.\n\nA heap-based buffer overflow exists in the NTLMSSP code for Ethereal\n0.9.9 and earlier. (CAN-2003-0159)\n\nMultiple off-by-one vulnerabilities exist in Ethereal 0.9.11 and earlier in\nthe AIM, GIOP Gryphon, OSPF, PPTP, Quake, Quake2, Quake3, Rsync, SMB, SMPP,\nand TSP dissectors, which do not properly use the tvb_get_nstringz and\ntvb_get_nstringz0 functions. (CAN-2003-0356)\n\nMultiple integer overflow vulnerabilities exist in Ethereal 0.9.11 and\nearlier in the Mount and PPP dissectors. (CAN-2003-0357)\n\nA vulnerability in the DCERPC dissector exists in Ethereal 0.9.12 and\nearlier, allowing remote attackers to cause a denial of service (memory\nconsumption) via a certain NDR string. (CAN-2003-0428)\n\nA possible buffer overflow vulnerability exists in Ethereal 0.9.12 and\nearlier, caused by invalid IPv4 or IPv6 prefix lengths and possibly\ntriggering a buffer overflow. (CAN-2003-0429)\n\nA vulnerability exists in Ethereal 0.9.12 and earlier, allowing remote\nattackers to cause a denial of service (crash) via an invalid ASN.1 value. \n(CAN-2003-0430)\n\nThe tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not\nproperly handle a zero-length buffer size. (CAN-2003-0431)\n\nEthereal 0.9.12 and earlier does not handle certain strings properly in the\nBGP, WTP, DNS, 802.11, ISAKMP, WSP, CLNP, ISIS, and RMI dissectors.\n(CAN-2003-0432)\n\nUsers of Ethereal should update to these erratum packages containing\nEthereal version 0.9.13, which are not vulnerable to these issues.", "modified": "2018-03-14T19:27:44", "published": "2003-07-08T04:00:00", "id": "RHSA-2003:077", "href": "https://access.redhat.com/errata/RHSA-2003:077", "type": "redhat", "title": "(RHSA-2003:077) ethereal security update", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}], "nessus": [{"lastseen": "2020-09-04T04:53:37", "description": "Updated Ethereal packages fixing a number of remotely exploitable\nsecurity issues are now available.\n\nEthereal is a package designed for monitoring network traffic.\n\nA number of security issues affect Ethereal. By exploiting these\nissues it may be possible to make Ethereal crash or run arbitrary code\nby injecting a purposefully malformed packet onto the wire, or by\nconvincing someone to read a malformed packet trace file.\n\nEthereal 0.9.9 and earlier allows remote attackers to cause a denial\nof service (crash) and possibly execute arbitrary code via carefully\ncrafted SOCKS packets. The Common Vulnerabilities and Exposures\nproject (cve.mitre.org) has assigned the name CVE-2003-0081 to this\nissue.\n\nA heap-based buffer overflow exists in the NTLMSSP code for Ethereal\n0.9.9 and earlier. (CVE-2003-0159)\n\nMultiple off-by-one vulnerabilities exist in Ethereal 0.9.11 and\nearlier in the AIM, GIOP Gryphon, OSPF, PPTP, Quake, Quake2, Quake3,\nRsync, SMB, SMPP, and TSP dissectors, which do not properly use the\ntvb_get_nstringz and tvb_get_nstringz0 functions. (CVE-2003-0356)\n\nMultiple integer overflow vulnerabilities exist in Ethereal 0.9.11 and\nearlier in the Mount and PPP dissectors. (CVE-2003-0357)\n\nA vulnerability in the DCERPC dissector exists in Ethereal 0.9.12 and\nearlier, allowing remote attackers to cause a denial of service\n(memory consumption) via a certain NDR string. (CVE-2003-0428)\n\nA possible buffer overflow vulnerability exists in Ethereal 0.9.12 and\nearlier, caused by invalid IPv4 or IPv6 prefix lengths and possibly\ntriggering a buffer overflow. (CVE-2003-0429)\n\nA vulnerability exists in Ethereal 0.9.12 and earlier, allowing remote\nattackers to cause a denial of service (crash) via an invalid ASN.1\nvalue. (CVE-2003-0430)\n\nThe tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not\nproperly handle a zero-length buffer size. (CVE-2003-0431)\n\nEthereal 0.9.12 and earlier does not handle certain strings properly\nin the BGP, WTP, DNS, 802.11, ISAKMP, WSP, CLNP, ISIS, and RMI\ndissectors. (CVE-2003-0432)\n\nUsers of Ethereal should update to these erratum packages containing\nEthereal version 0.9.13, which are not vulnerable to these issues.", "edition": 21, "published": "2004-07-06T00:00:00", "title": "RHEL 2.1 : ethereal (RHSA-2003:077)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0432", "CVE-2003-0081", "CVE-2003-0428", "CVE-2003-0356", "CVE-2003-0357", "CVE-2003-0429", "CVE-2003-0159", "CVE-2003-0431", "CVE-2003-0430"], "modified": "2020-09-02T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:2.1", "p-cpe:/a:redhat:enterprise_linux:ethereal-gnome", "p-cpe:/a:redhat:enterprise_linux:ethereal"], "id": "REDHAT-RHSA-2003-077.NASL", "href": "https://www.tenable.com/plugins/nessus/12373", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2003:077. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12373);\n script_version (\"1.28\");\n script_cvs_date(\"Date: 2019/10/25 13:36:10\");\n\n script_cve_id(\"CVE-2003-0081\", \"CVE-2003-0159\", \"CVE-2003-0356\", \"CVE-2003-0357\", \"CVE-2003-0428\", \"CVE-2003-0429\", \"CVE-2003-0430\", \"CVE-2003-0431\", \"CVE-2003-0432\");\n script_xref(name:\"RHSA\", value:\"2003:077\");\n\n script_name(english:\"RHEL 2.1 : ethereal (RHSA-2003:077)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated Ethereal packages fixing a number of remotely exploitable\nsecurity issues are now available.\n\nEthereal is a package designed for monitoring network traffic.\n\nA number of security issues affect Ethereal. By exploiting these\nissues it may be possible to make Ethereal crash or run arbitrary code\nby injecting a purposefully malformed packet onto the wire, or by\nconvincing someone to read a malformed packet trace file.\n\nEthereal 0.9.9 and earlier allows remote attackers to cause a denial\nof service (crash) and possibly execute arbitrary code via carefully\ncrafted SOCKS packets. The Common Vulnerabilities and Exposures\nproject (cve.mitre.org) has assigned the name CVE-2003-0081 to this\nissue.\n\nA heap-based buffer overflow exists in the NTLMSSP code for Ethereal\n0.9.9 and earlier. (CVE-2003-0159)\n\nMultiple off-by-one vulnerabilities exist in Ethereal 0.9.11 and\nearlier in the AIM, GIOP Gryphon, OSPF, PPTP, Quake, Quake2, Quake3,\nRsync, SMB, SMPP, and TSP dissectors, which do not properly use the\ntvb_get_nstringz and tvb_get_nstringz0 functions. (CVE-2003-0356)\n\nMultiple integer overflow vulnerabilities exist in Ethereal 0.9.11 and\nearlier in the Mount and PPP dissectors. (CVE-2003-0357)\n\nA vulnerability in the DCERPC dissector exists in Ethereal 0.9.12 and\nearlier, allowing remote attackers to cause a denial of service\n(memory consumption) via a certain NDR string. (CVE-2003-0428)\n\nA possible buffer overflow vulnerability exists in Ethereal 0.9.12 and\nearlier, caused by invalid IPv4 or IPv6 prefix lengths and possibly\ntriggering a buffer overflow. (CVE-2003-0429)\n\nA vulnerability exists in Ethereal 0.9.12 and earlier, allowing remote\nattackers to cause a denial of service (crash) via an invalid ASN.1\nvalue. (CVE-2003-0430)\n\nThe tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not\nproperly handle a zero-length buffer size. (CVE-2003-0431)\n\nEthereal 0.9.12 and earlier does not handle certain strings properly\nin the BGP, WTP, DNS, 802.11, ISAKMP, WSP, CLNP, ISIS, and RMI\ndissectors. (CVE-2003-0432)\n\nUsers of Ethereal should update to these erratum packages containing\nEthereal version 0.9.13, which are not vulnerable to these issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2003-0081\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2003-0159\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2003-0356\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2003-0357\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2003-0428\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2003-0429\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2003-0430\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2003-0431\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2003-0432\"\n );\n # http://www.ethereal.com/appnotes/enpa-sa-00008.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://ethereal.archive.sunet.se/appnotes/enpa-sa-00008.html\"\n );\n # http://www.ethereal.com/appnotes/enpa-sa-00009.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://ethereal.archive.sunet.se/appnotes/enpa-sa-00009.html\"\n );\n # http://www.ethereal.com/appnotes/enpa-sa-00010.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://ethereal.archive.sunet.se/appnotes/enpa-sa-00010.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2003:077\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected ethereal and / or ethereal-gnome packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ethereal\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ethereal-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/03/18\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/07/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^2\\.1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\nif (cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i386\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2003:077\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"ethereal-0.9.13-1.AS21.1\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"ethereal-gnome-0.9.13-1.AS21.1\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ethereal / ethereal-gnome\");\n }\n}\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}]}
