Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0432

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2003-0432
Last Modified 10 Sep 2008 03:19:00
Published 24 Jul 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0432

Summary

Ethereal 0.9.12 and earlier does not handle certain strings properly, with unknown consequences, in the (1) BGP, (2) WTP, (3) DNS, (4) 802.11, (5) ISAKMP, (6) WSP, (7) CLNP, (8) ISIS, and (9) RMI dissectors.

Vulnerable Systems

Application

  • Ethereal Group Ethereal 0.9.12


References

CONFIRM - http://www.ethereal.com/appnotes/enpa-sa-00010.html

DEBIAN - DSA-324

SECUNIA - 9007

SCO - CSSA-2003-030.0

REDHAT - RHSA-2003:077

CONECTIVA - CLA-2003:662


Last Updated: 27 May 2016 10:37:54