Mandrake Linux Security Advisory : ethereal (MDKSA-2004:067)
Medium Nessus Plugin ID 14166
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionThree vulnerabilities were discovered in Ethereal versions prior to 0.10.5 in the iSNS, SMB SID, and SNMP dissectors. It may be possible to make Ethereal crash or run arbitrary code by injecting a purposefully malformed packet into the wire or by convincing someone to read a malformed packet trace file.
These vulnerabilities have been corrected in Ethereal 0.10.5.
SolutionUpdate the affected ethereal package.