5.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:N/I:N/A:C
0.02 Low
EPSS
Percentile
87.7%
Wireshark is a program for monitoring network traffic.
Bugs were found in Wireshark’s SCSI and SSCOP protocol dissectors. Ethereal
could crash or stop responding if it read a malformed packet off the
network. (CVE-2006-4330, CVE-2006-4333)
An off-by-one bug was found in the IPsec ESP decryption preference parser.
Ethereal could crash or stop responding if it read a malformed packet off
the network. (CVE-2006-4331)
Users of Wireshark or Ethereal should upgrade to these updated packages
containing Wireshark version 0.99.3, which is not vulnerable to these
issues. These packages also fix a bug in the PAM configuration of the
Wireshark packages which prevented non-root users starting a capture.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | i386 | wireshark-gnome | < 0.99.3-EL4.2 | wireshark-gnome-0.99.3-EL4.2.i386.rpm |
RedHat | any | i386 | wireshark | < 0.99.3-EL3.2 | wireshark-0.99.3-EL3.2.i386.rpm |
RedHat | any | s390x | wireshark | < 0.99.3-EL3.2 | wireshark-0.99.3-EL3.2.s390x.rpm |
RedHat | any | ia64 | wireshark-gnome | < 0.99.3-AS21.4 | wireshark-gnome-0.99.3-AS21.4.ia64.rpm |
RedHat | any | ppc | wireshark | < 0.99.3-EL4.2 | wireshark-0.99.3-EL4.2.ppc.rpm |
RedHat | any | s390 | wireshark | < 0.99.3-EL4.2 | wireshark-0.99.3-EL4.2.s390.rpm |
RedHat | any | i386 | wireshark-gnome | < 0.99.3-AS21.4 | wireshark-gnome-0.99.3-AS21.4.i386.rpm |
RedHat | any | i386 | wireshark | < 0.99.3-EL4.2 | wireshark-0.99.3-EL4.2.i386.rpm |
RedHat | any | ia64 | wireshark-gnome | < 0.99.3-EL3.2 | wireshark-gnome-0.99.3-EL3.2.ia64.rpm |
RedHat | any | s390 | wireshark | < 0.99.3-EL3.2 | wireshark-0.99.3-EL3.2.s390.rpm |