Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0401

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0401
Last Modified 10 Sep 2008 03:11:55
Published 18 Jun 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0401

Summary

SMB dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via malformed packets that cause Ethereal to dereference a NULL pointer.

Vulnerable Systems

Application

  • Ethereal Group Ethereal 0.9 .0

  • Ethereal Group Ethereal 0.9.1

  • Ethereal Group Ethereal 0.9.2

  • Ethereal Group Ethereal 0.9.3


References

CONFIRM - http://www.ethereal.com/appnotes/enpa-sa-00004.html

DEBIAN - DSA-130

BUGTRAQ - 20020529 Potential security issues in Ethereal

BID - 4806

REDHAT - RHSA-2002:088

REDHAT - RHSA-2002:036

XF - ethereal-smb-dissector-dos(9204)

CONECTIVA - CLSA-2002:505

CALDERA - CSSA-2002-037.0


Last Updated: 27 May 2016 10:36:54