Debian DSA-1127-1 : ethereal - several vulnerabilities

critical Nessus Plugin ID 22669

Synopsis

The remote Debian host is missing a security-related update.

Description

Several remote vulnerabilities have been discovered in the Ethereal network sniffer, which may lead to the execution of arbitrary code.
The Common Vulnerabilities and Exposures project identifies the following problems :

- CVE-2006-3628 Ilja van Sprundel discovered that the FW-1 and MQ dissectors are vulnerable to format string attacks.

- CVE-2006-3629 Ilja van Sprundel discovered that the MOUNT dissector is vulnerable to denial of service through memory exhaustion.

- CVE-2006-3630 Ilja van Sprundel discovered off-by-one overflows in the NCP NMAS and NDPS dissectors.

- CVE-2006-3631 Ilja van Sprundel discovered a buffer overflow in the NFS dissector.

- CVE-2006-3632 Ilja van Sprundel discovered that the SSH dissector is vulnerable to denial of service through an infinite loop.

Solution

Upgrade the ethereal packages.

For the stable distribution (sarge) these problems have been fixed in version 0.10.10-2sarge6.

See Also

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=373913

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375694

https://security-tracker.debian.org/tracker/CVE-2006-3628

https://security-tracker.debian.org/tracker/CVE-2006-3629

https://security-tracker.debian.org/tracker/CVE-2006-3630

https://security-tracker.debian.org/tracker/CVE-2006-3631

https://security-tracker.debian.org/tracker/CVE-2006-3632

http://www.debian.org/security/2006/dsa-1127

Plugin Details

Severity: Critical

ID: 22669

File Name: debian_DSA-1127.nasl

Version: 1.17

Type: local

Agent: unix

Published: 10/14/2006

Updated: 1/4/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:ethereal, cpe:/o:debian:debian_linux:3.1

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Patch Publication Date: 7/28/2006

Vulnerability Publication Date: 7/17/2006

Reference Information

CVE: CVE-2006-3628, CVE-2006-3629, CVE-2006-3630, CVE-2006-3631, CVE-2006-3632

CWE: 119

DSA: 1127