Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2004:002
HistoryJan 20, 2004 - 12:00 a.m.

(RHSA-2004:002) ethereal security update

2004-01-2000:00:00
access.redhat.com
6

0.164 Low

EPSS

Percentile

96.1%

JSON

Ethereal is a program for monitoring network traffic.

Two security issues have been found that affect Ethereal. By exploiting
these issues it may be possible to make Ethereal crash by injecting an
intentionally malformed packet onto the wire or by convincing someone to
read a malformed packet trace file. It is not known if these issues could
allow arbitrary code execution.

The SMB dissector in Ethereal before 0.10.0 allows remote attackers to
cause a denial of service via a malformed SMB packet that triggers a
segmentation fault during processing of Selected packets. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-2003-1012 to this issue.

The Q.931 dissector in Ethereal before 0.10.0 allows remote attackers to
cause a denial of service (crash) via a malformed Q.931, which triggers a
null dereference. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2003-1013 to this issue.

Users of Ethereal should update to these erratum packages containing
Ethereal version 0.10.0, which is not vulnerable to these issues.

OSVersionArchitecturePackageVersionFilename
RedHatanyi386ethereal< 0.10.0a-0.30E.1ethereal-0.10.0a-0.30E.1.i386.rpm
RedHatanyia64ethereal< 0.10.0a-0.AS21.1ethereal-0.10.0a-0.AS21.1.ia64.rpm
RedHatanys390ethereal-gnome< 0.10.0a-0.30E.1ethereal-gnome-0.10.0a-0.30E.1.s390.rpm
RedHatanyia64ethereal-gnome< 0.10.0a-0.AS21.1ethereal-gnome-0.10.0a-0.AS21.1.ia64.rpm
RedHatanyi386ethereal-gnome< 0.10.0a-0.30E.1ethereal-gnome-0.10.0a-0.30E.1.i386.rpm
RedHatanyia64ethereal< 0.10.0a-0.30E.1ethereal-0.10.0a-0.30E.1.ia64.rpm
RedHatanyx86_64ethereal-gnome< 0.10.0a-0.30E.1ethereal-gnome-0.10.0a-0.30E.1.x86_64.rpm
RedHatanys390xethereal< 0.10.0a-0.30E.1ethereal-0.10.0a-0.30E.1.s390x.rpm
RedHatanyi386ethereal< 0.10.0a-0.AS21.1ethereal-0.10.0a-0.AS21.1.i386.rpm
RedHatanys390xethereal-gnome< 0.10.0a-0.30E.1ethereal-gnome-0.10.0a-0.30E.1.s390x.rpm
Rows per page:
1-10 of 161

Related

nessus 3
openvas 2
debian 2
cve 2
nvd 2
cvelist 2
osv 1
nessus
nessus
RHEL 2.1 / 3 : ethereal (RHSA-2004:002)
2004-07-06 00:00:00
Mandrake Linux Security Advisory : ethereal (MDKSA-2004:002)
2004-07-31 00:00:00
Debian DSA-407-1 : ethereal - buffer overflows
2004-09-29 00:00:00
openvas
openvas
Debian Security Advisory DSA 407-1 (ethereal)
2008-01-17 00:00:00
Debian Security Advisory DSA 407-1 (ethereal)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 407-1] New ethereal packages fix several vulnerabilities
2004-01-05 09:40:05
[SECURITY] [DSA 407-1] New ethereal packages fix several vulnerabilities
2004-01-05 09:40:05
cve
cve
CVE-2003-1013
2004-01-05 05:00:00
CVE-2003-1012
2004-01-05 05:00:00
nvd
nvd
CVE-2003-1013
2004-01-05 05:00:00
CVE-2003-1012
2004-01-05 05:00:00
cvelist
cvelist
CVE-2003-1012
2003-12-17 05:00:00
CVE-2003-1013
2003-12-17 05:00:00
osv
osv
ethereal - buffer overflows
2004-01-05 00:00:00

0.164 Low

EPSS

Percentile

96.1%

JSON
Related for RHSA-2004:002
nessus3openvas2debian2cve2nvd2cvelist2osv1