Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3628

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2006-3628
Last Modified 07 Mar 2011 12:00:00
Published 21 Jul 2006 10:03:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3628

Summary

Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissectors.

Vulnerable Systems

Application

  • Ethereal Group Ethereal 0.10

  • Ethereal Group Ethereal 0.10.0

  • Ethereal Group Ethereal 0.10.0a

  • Ethereal Group Ethereal 0.10.1

  • Ethereal Group Ethereal 0.10.10

  • Ethereal Group Ethereal 0.10.11

  • Ethereal Group Ethereal 0.10.12

  • Ethereal Group Ethereal 0.10.13

  • Ethereal Group Ethereal 0.10.14

  • Ethereal Group Ethereal 0.10.2

  • Ethereal Group Ethereal 0.10.3

  • Ethereal Group Ethereal 0.10.4

  • Ethereal Group Ethereal 0.10.5

  • Ethereal Group Ethereal 0.10.6

  • Ethereal Group Ethereal 0.10.7

  • Ethereal Group Ethereal 0.10.8

  • Ethereal Group Ethereal 0.10.9

  • Ethereal Group Ethereal 0.99.0

  • Wireshark 0.10

  • Wireshark 0.10.13

  • Wireshark 0.10.4

  • Wireshark 0.99

  • Wireshark 0.99.1


References

CONFIRM - http://www.wireshark.org/security/wnpa-sec-2006-01.html

BID - 19051

SECUNIA - 21107

SECUNIA - 21078

CONFIRM - https://issues.rpath.com/browse/RPL-512

XF - wireshark-ntp-format-string(27828)

XF - wireshark-xml-format-string(27825)

XF - wireshark-mq-format-string(27824)

XF - wireshark-cpfw1-format-string(27823)

XF - wireshark-ansimap-format-string(27822)

VUPEN - ADV-2006-2850

BUGTRAQ - 20060719 rPSA-2006-0132-1 tshark wireshark

OSVDB - 27369

OSVDB - 27364

OSVDB - 27363

OSVDB - 27362

SUSE - SUSE-SR:2006:020

MANDRIVA - MDKSA-2006:128

DEBIAN - DSA-1127

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-197.htm

SECTRACK - 1016532

GENTOO - GLSA-200607-09

SECUNIA - 22089

SECUNIA - 21598

SECUNIA - 21488

SECUNIA - 21467

SECUNIA - 21249

SECUNIA - 21204

SECUNIA - 21121

REDHAT - RHSA-2006:0602

SGI - 20060801-01-P


Last Updated: 27 May 2016 10:43:05