Nessus Plugin #14999
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
[DSA162] DSA-162-1 ethereal
- Family:
- Debian Local Security Checks
- Category:
- infos
- Copyright:
- This script is (C) 2004 Michel Arboi
- Summary:
- DSA-162-1 ethereal
- Version:
- $Revision: 1.4 $
- Cve_id:
- CAN-2002-0834
- Bugtraq_id:
- 5573
- Xrefs:
- DSA:162
- Description:
Ethereal developers discovered a buffer overflow in the ISIS protocol
dissector. It may be possible to make Ethereal crash or hang by
injecting a purposefully malformed packet onto the wire, or by
convincing someone to read a malformed packet trace file. It may be
possible to make Ethereal run arbitrary code by exploiting the buffer
and pointer problems.
This problem has been fixed in version 0.9.4-1woody2 for the current
stable distribution (woody), in version 0.8.0-4potato.1 for
the old stable distribution (potato) and in version 0.9.6-1 for the
unstable distribution (sid).
We recommend that you upgrade your ethereal packages.
Solution : http://www.debian.org/security/2002/dsa-162
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.