Mandrake Linux Security Advisory : ethereal (MDKSA-2003:051)
High Nessus Plugin ID 14035
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionA vulnerability was discovered in Ethereal 0.9.9 and earlier that allows a remote attacker to use specially crafted SOCKS packets to cause a denial of service (DoS) and possibly execute arbitrary code.
A similar vulnerability also exists in the NTLMSSP code in Ethereal 0.9.9 and earlier, due to a heap-based buffer overflow.
SolutionUpdate the affected ethereal package.