Detections
Analytics

Debian DSA-1049-1 : ethereal - several vulnerabilities

critical Nessus Plugin ID 22591

Synopsis

The remote Debian host is missing a security-related update.

Description

Gerald Combs reported several vulnerabilities in ethereal, a popular network traffic analyser. The Common Vulnerabilities and Exposures project identifies the following problems :

 - CVE-2006-1932 The OID printing routine is susceptible to an off-by-one error.

 - CVE-2006-1933 The UMA and BER dissectors could go into an infinite loop.

 - CVE-2006-1934 The Network Instruments file code could overrun a buffer.

 - CVE-2006-1935 The COPS dissector contains a potential buffer overflow.

 - CVE-2006-1936 The telnet dissector contains a buffer overflow.

 - CVE-2006-1937 Bugs in the SRVLOC and AIM dissector, and in the statistics counter could crash ethereal.

 - CVE-2006-1938 NULL pointer dereferences in the SMB PIPE dissector and when reading a malformed Sniffer capture could crash ethereal.

 - CVE-2006-1939 NULL pointer dereferences in the ASN.1, GSM SMS, RPC and ASN.1-based dissector and an invalid display filter could crash ethereal.

 - CVE-2006-1940 The SNDCP dissector could cause an unintended abortion.

Solution

Upgrade the ethereal packages.

For the old stable distribution (woody) these problems have been fixed in version 0.9.4-1woody15.

For the stable distribution (sarge) these problems have been fixed in version 0.10.10-2sarge5.

See Also

https://security-tracker.debian.org/tracker/CVE-2006-1932

https://security-tracker.debian.org/tracker/CVE-2006-1933

https://security-tracker.debian.org/tracker/CVE-2006-1934

https://security-tracker.debian.org/tracker/CVE-2006-1935

https://security-tracker.debian.org/tracker/CVE-2006-1936

https://security-tracker.debian.org/tracker/CVE-2006-1937

https://security-tracker.debian.org/tracker/CVE-2006-1938

https://security-tracker.debian.org/tracker/CVE-2006-1939

https://security-tracker.debian.org/tracker/CVE-2006-1940

http://www.debian.org/security/2006/dsa-1049

Plugin Details

Severity: Critical

ID: 22591

File Name: debian_DSA-1049.nasl

Version: 1.24

Type: local

Agent: unix

Published: 10/14/2006

Updated: 1/4/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:ethereal, cpe:/o:debian:debian_linux:3.0, cpe:/o:debian:debian_linux:3.1

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Exploit Ease: No known exploits are available

Patch Publication Date: 5/2/2006

Vulnerability Publication Date: 4/24/2006

Reference Information

CVE: CVE-2006-1932, CVE-2006-1933, CVE-2006-1934, CVE-2006-1935, CVE-2006-1936, CVE-2006-1937, CVE-2006-1938, CVE-2006-1939, CVE-2006-1940

BID: 17682

DSA: 1049