RHEL 2.1 : ethereal (RHSA-2002:170)

This script is Copyright (C) 2004-2014 Tenable Network Security, Inc.


Synopsis :

The remote Red Hat host is missing one or more security updates.

Description :

Updated ethereal packages are available which fix several security
problems.

Ethereal is a package designed for monitoring network traffic on your
system. Several security issues have been found in the Ethereal
packages distributed with Red Hat Linux Advanced Server :

Buffer overflow in Ethereal 0.9.5 and earlier allows remote attackers
to cause a denial of service or execute arbitrary code via the ISIS
dissector. (CVE-2002-0834)

Buffer overflows in Ethereal 0.9.4 and earlier allows remote attackers
to cause a denial of service or execute arbitrary code via (1) the BGP
dissector, or (2) the WCP dissector. (CVE-2002-0821)

Ethereal 0.9.4 and earlier allows remote attackers to cause a denial
of service and possibly execute arbitrary code via the (1) SOCKS, (2)
RSVP, (3) AFS, or (4) LMP dissectors, which can be caused to core dump
(CVE-2002-0822)

A buffer overflow in the X11 dissector in Ethereal before 0.9.4 allows
remote attackers to cause a denial of service (crash) and possibly
execute arbitrary code while Ethereal is parsing keysyms.
(CVE-2002-0402)

The DNS dissector in Ethereal before 0.9.4 allows remote attackers to
cause a denial of service (CPU consumption) via a malformed packet
that causes Ethereal to enter an infinite loop. (CVE-2002-0403)

A vulnerability in the GIOP dissector in Ethereal before 0.9.4 allows
remote attackers to cause a denial of service (memory consumption).
(CVE-2002-0404)

Users of Ethereal should update to the errata packages containing
Ethereal version 0.9.6 which is not vulnerable to these issues.

See also :

https://www.redhat.com/security/data/cve/CVE-2002-0402.html
https://www.redhat.com/security/data/cve/CVE-2002-0403.html
https://www.redhat.com/security/data/cve/CVE-2002-0404.html
https://www.redhat.com/security/data/cve/CVE-2002-0821.html
https://www.redhat.com/security/data/cve/CVE-2002-0822.html
https://www.redhat.com/security/data/cve/CVE-2002-0834.html
http://ethereal.archive.sunet.se/appnotes/enpa-sa-00006.html
http://ethereal.archive.sunet.se/appnotes/enpa-sa-00005.html
http://ethereal.archive.sunet.se/appnotes/enpa-sa-00004.html
http://rhn.redhat.com/errata/RHSA-2002-170.html

Solution :

Update the affected ethereal and / or ethereal-gnome packages.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Red Hat Local Security Checks

Nessus Plugin ID: 12319 ()

Bugtraq ID:

CVE ID: CVE-2002-0402
CVE-2002-0403
CVE-2002-0404
CVE-2002-0821
CVE-2002-0822
CVE-2002-0834