Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3369

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-3369
Last Modified 18 May 2012 12:00:00
Published 30 Sep 2011 01:55:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-3369

Summary

The add_conversation function in conversations.c in EtherApe before 0.9.12 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RPC packet, related to the get_rpc function in decode_proto.c.

Vulnerable Systems

Application

  • Juan Toledo Etherape 0.0.1

  • Juan Toledo Etherape 0.0.2

  • Juan Toledo Etherape 0.0.3

  • Juan Toledo Etherape 0.0.4

  • Juan Toledo Etherape 0.0.5

  • Juan Toledo Etherape 0.0.6

  • Juan Toledo Etherape 0.0.7

  • Juan Toledo Etherape 0.0.8

  • Juan Toledo Etherape 0.1.0

  • Juan Toledo Etherape 0.1.1

  • Juan Toledo Etherape 0.1.2

  • Juan Toledo Etherape 0.1.3

  • Juan Toledo Etherape 0.1.4

  • Juan Toledo Etherape 0.1.5

  • Juan Toledo Etherape 0.1.6

  • Juan Toledo Etherape 0.1.7

  • Juan Toledo Etherape 0.1.8

  • Juan Toledo Etherape 0.1.9

  • Juan Toledo Etherape 0.2.0

  • Juan Toledo Etherape 0.2.1

  • Juan Toledo Etherape 0.2.10

  • Juan Toledo Etherape 0.2.11

  • Juan Toledo Etherape 0.2.2

  • Juan Toledo Etherape 0.2.3

  • Juan Toledo Etherape 0.2.4

  • Juan Toledo Etherape 0.2.5

  • Juan Toledo Etherape 0.2.6

  • Juan Toledo Etherape 0.2.7

  • Juan Toledo Etherape 0.2.8

  • Juan Toledo Etherape 0.2.9

  • Juan Toledo Etherape 0.3.0

  • Juan Toledo Etherape 0.3.1

  • Juan Toledo Etherape 0.3.2

  • Juan Toledo Etherape 0.3.3

  • Juan Toledo Etherape 0.3.4

  • Juan Toledo Etherape 0.3.5

  • Juan Toledo Etherape 0.3.6

  • Juan Toledo Etherape 0.3.7

  • Juan Toledo Etherape 0.3.8

  • Juan Toledo Etherape 0.3.9

  • Juan Toledo Etherape 0.4.0

  • Juan Toledo Etherape 0.4.1

  • Juan Toledo Etherape 0.4.2

  • Juan Toledo Etherape 0.4.3

  • Juan Toledo Etherape 0.4.4

  • Juan Toledo Etherape 0.4.5

  • Juan Toledo Etherape 0.4.6

  • Juan Toledo Etherape 0.4.7

  • Juan Toledo Etherape 0.5.0

  • Juan Toledo Etherape 0.5.1

  • Juan Toledo Etherape 0.5.2

  • Juan Toledo Etherape 0.5.3

  • Juan Toledo Etherape 0.5.4

  • Juan Toledo Etherape 0.5.5

  • Juan Toledo Etherape 0.5.6

  • Juan Toledo Etherape 0.5.7

  • Juan Toledo Etherape 0.5.8

  • Juan Toledo Etherape 0.5.9

  • Juan Toledo Etherape 0.6.0

  • Juan Toledo Etherape 0.6.1

  • Juan Toledo Etherape 0.6.2

  • Juan Toledo Etherape 0.6.3

  • Juan Toledo Etherape 0.6.4

  • Juan Toledo Etherape 0.6.5

  • Juan Toledo Etherape 0.6.6

  • Juan Toledo Etherape 0.6.7

  • Juan Toledo Etherape 0.6.8

  • Juan Toledo Etherape 0.6.9

  • Juan Toledo Etherape 0.7.0

  • Juan Toledo Etherape 0.7.1

  • Juan Toledo Etherape 0.7.2

  • Juan Toledo Etherape 0.7.3

  • Juan Toledo Etherape 0.7.4

  • Juan Toledo Etherape 0.7.5

  • Juan Toledo Etherape 0.7.6

  • Juan Toledo Etherape 0.7.7

  • Juan Toledo Etherape 0.7.8

  • Juan Toledo Etherape 0.8.0

  • Juan Toledo Etherape 0.8.1

  • Juan Toledo Etherape 0.8.2

  • Juan Toledo Etherape 0.9.0

  • Juan Toledo Etherape 0.9.1

  • Juan Toledo Etherape 0.9.10

  • Juan Toledo Etherape 0.9.11

  • Juan Toledo Etherape 0.9.2

  • Juan Toledo Etherape 0.9.3

  • Juan Toledo Etherape 0.9.4

  • Juan Toledo Etherape 0.9.5

  • Juan Toledo Etherape 0.9.6

  • Juan Toledo Etherape 0.9.7

  • Juan Toledo Etherape 0.9.8

  • Juan Toledo Etherape 0.9.9


References

MLIST - [oss-security] 20110922 Re: CVE Request? etherape remote crash (denial of service)

MLIST - [oss-security] 20110919 CVE Request? etherape remote crash (denial of service)

CONFIRM - http://sourceforge.net/tracker/?func=detail&aid=3309061&group_id=2712&atid=102712

SECUNIA - 45989

CONFIRM - http://etherape.sourceforge.net/NEWS.html


Last Updated: 27 May 2016 10:57:42