Detections
Analytics

Debian DSA-1171-1 : ethereal - several vulnerabilities

high Nessus Plugin ID 22713

Synopsis

The remote Debian host is missing a security-related update.

Description

Several remote vulnerabilities have been discovered in the Ethereal network scanner, which may lead to the execution of arbitrary code.
The Common Vulnerabilities and Exposures project identifies the following problems :

 - CVE-2006-4333 It was discovered that the Q.2391 dissector is vulnerable to denial of service caused by memory exhaustion.

 - CVE-2005-3241 It was discovered that the FC-FCS, RSVP and ISIS-LSP dissectors are vulnerable to denial of service caused by memory exhaustion.

 - CVE-2005-3242 It was discovered that the IrDA and SMB dissectors are vulnerable to denial of service caused by memory corruption.

 - CVE-2005-3243 It was discovered that the SLIMP3 and AgentX dissectors are vulnerable to code injection caused by buffer overflows.

 - CVE-2005-3244 It was discovered that the BER dissector is vulnerable to denial of service caused by an infinite loop.

 - CVE-2005-3246 It was discovered that the NCP and RTnet dissectors are vulnerable to denial of service caused by a NULL pointer dereference.

 - CVE-2005-3248 It was discovered that the X11 dissector is vulnerable to denial of service caused by a division through zero.

This update also fixes a 64 bit-specific regression in the ASN.1 decoder, which was introduced in a previous DSA.

Solution

Upgrade the ethereal packages.

For the stable distribution (sarge) these problems have been fixed in version 0.10.10-2sarge8.

See Also

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=384528

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=334880

https://security-tracker.debian.org/tracker/CVE-2006-4333

https://security-tracker.debian.org/tracker/CVE-2005-3241

https://security-tracker.debian.org/tracker/CVE-2005-3242

https://security-tracker.debian.org/tracker/CVE-2005-3243

https://security-tracker.debian.org/tracker/CVE-2005-3244

https://security-tracker.debian.org/tracker/CVE-2005-3246

https://security-tracker.debian.org/tracker/CVE-2005-3248

http://www.debian.org/security/2006/dsa-1171

Plugin Details

Severity: High

ID: 22713

File Name: debian_DSA-1171.nasl

Version: 1.18

Type: local

Agent: unix

Published: 10/14/2006

Updated: 1/4/2021

Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.3

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:ethereal, cpe:/o:debian:debian_linux:3.1

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Patch Publication Date: 9/7/2006

Vulnerability Publication Date: 10/19/2005

Reference Information

CVE: CVE-2005-3241, CVE-2005-3242, CVE-2005-3243, CVE-2005-3244, CVE-2005-3246, CVE-2005-3248, CVE-2006-4333

CWE: 399

DSA: 1171