FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

ethereal -- multiple vulnerabilities

Affected packages
ethereal < 0.10.8
ethereal-lite < 0.10.8
tethereal < 0.10.8
tethereal-lite < 0.10.8

Details

VuXML ID efa1344b-5477-11d9-a9e7-0001020eed82
Discovery 2004-12-14
Entry 2004-12-23

An Ethreal Security Advisories reports:

Issues have been discovered in the following protocol dissectors:

Impact: It may be possible to make Ethereal crash or run arbitrary code by injecting a purposefully malformed packet onto the wire or by convincing someone to read a malformed packet trace file.

References

CVE Name CVE-2004-1139
CVE Name CVE-2004-1140
CVE Name CVE-2004-1141
CVE Name CVE-2004-1142
URL http://www.ethereal.com/appnotes/enpa-sa-00016.html