Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ethereal
(Ethereal_group)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 105 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2002-06-18 | CVE-2002-0403 | DNS dissector in Ethereal before 0.9.3 allows remote attackers to cause a denial of service (CPU consumption) via a malformed packet that causes Ethereal to enter an infinite loop. | Ethereal | N/A | ||
| 2002-06-18 | CVE-2002-0402 | Buffer overflow in X11 dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code while Ethereal is parsing keysyms. | Ethereal | N/A | ||
| 2002-06-25 | CVE-2002-0353 | The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a certain malformed packet, which causes Ethereal to allocate memory incorrectly, possibly due to zero-length fields. | Ethereal | N/A | ||
| 2002-08-12 | CVE-2002-0822 | Ethereal 0.9.4 and earlier allows remote attackers to cause a denial of service and possibly excecute arbitrary code via the (1) SOCKS, (2) RSVP, (3) AFS, or (4) LMP dissectors, which can be caused to core dump. | Ethereal | N/A | ||
| 2002-08-12 | CVE-2002-0821 | Buffer overflows in Ethereal 0.9.4 and earlier allow remote attackers to cause a denial of service or execute arbitrary code via (1) the BGP dissector, or (2) the WCP dissector. | Ethereal | N/A | ||
| 2002-09-24 | CVE-2002-0834 | Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets. | Ethereal | N/A | ||
| 2004-05-04 | CVE-2004-0367 | Ethereal 0.10.1 to 0.10.2 allows remote attackers to cause a denial of service (crash) via a zero-length Presentation protocol selector. | Ethereal | N/A | ||
| 2002-12-23 | CVE-2002-1356 | Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possibly related to a missing field for EndVerifyAck messages. | Ethereal | N/A | ||
| 2002-12-23 | CVE-2002-1355 | Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service (infinite loop) via malformed messages. | Ethereal | N/A | ||
| 2004-12-06 | CVE-2004-0635 | The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-bounds read. | Ethereal, Linux, Mandrake_linux, Enterprise_linux, Linux_advanced_workstation | N/A |