Ethereal@* Security Vulnerabilities and Issues — Ethereal@* CVE List

Lucene search

Ethereal GroupEthereal*

6 matches found

CVE•added 2003/07/24 4:0 a.m.•43 views

CVE-2003-0429

The OSI dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via invalid IPv4 or IPv6 prefix lengths, possibly triggering a buffer overflow.

7.5CVSS9.7AI score0.02584EPSS

CVE•added 2003/06/09 4:0 a.m.•42 views

CVE-2003-0357

Multiple integer overflow vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) Mount and (2) PPP dissectors.

7.5CVSS9.9AI score0.14379EPSS

CVE•added 2003/07/24 4:0 a.m.•41 views

CVE-2003-0431

The tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not properly handle a zero-length buffer size, with unknown consequences.

10CVSS9.5AI score0.00553EPSS

CVE•added 2003/07/24 4:0 a.m.•39 views

CVE-2003-0428

Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (memory consumption) via a certain NDR string.

5CVSS8.9AI score0.02306EPSS

CVE•added 2003/07/24 4:0 a.m.•39 views

CVE-2003-0432

Ethereal 0.9.12 and earlier does not handle certain strings properly, with unknown consequences, in the (1) BGP, (2) WTP, (3) DNS, (4) 802.11, (5) ISAKMP, (6) WSP, (7) CLNP, (8) ISIS, and (9) RMI dissectors.

10CVSS9.4AI score0.00553EPSS

CVE•added 2003/07/24 4:0 a.m.•38 views

CVE-2003-0430

The SPNEGO dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (crash) via an invalid ASN.1 value.

5CVSS9.1AI score0.01271EPSS