GLSA-200406-01 : Ethereal: Multiple security problems

critical Nessus Plugin ID 14512

Synopsis

The remote Gentoo host is missing one or more security-related patches.

Description

The remote host is affected by the vulnerability described in GLSA-200406-01 (Ethereal: Multiple security problems)

There are multiple vulnerabilities in versions of Ethereal earlier than 0.10.4, including:
A buffer overflow in the MMSE dissector.
Under specific conditions a SIP packet could make Ethereal crash.
The AIM dissector could throw an assertion, causing Ethereal to crash.
The SPNEGO dissector could dereference a NULL pointer, causing a crash.
Impact :

An attacker could use these vulnerabilities to crash Ethereal or even execute arbitrary code with the permissions of the user running Ethereal, which could be the root user.
Workaround :

For a temporary workaround you can disable all affected protocol dissectors by selecting Analyze->Enabled Protocols... and deselecting them from the list. However, it is strongly recommended to upgrade to the latest stable release.

Solution

All Ethereal users should upgrade to the latest stable version:
# emerge sync # emerge -pv '>=net-analyzer/ethereal-0.10.4' # emerge '>=net-analyzer/ethereal-0.10.4'

Plugin Details

Severity: Critical

ID: 14512

File Name: gentoo_GLSA-200406-01.nasl

Version: 1.17

Type: local

Family: Gentoo Local Security Checks

Published: 8/30/2004

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:gentoo:linux, p-cpe:/a:gentoo:linux:ethereal

Required KB Items: Host/local_checks_enabled, Host/Gentoo/release, Host/Gentoo/qpkg-list

Patch Publication Date: 6/4/2004

Vulnerability Publication Date: 3/22/2004

Reference Information

CVE: CVE-2004-0504, CVE-2004-0505, CVE-2004-0506, CVE-2004-0507

GLSA: 200406-01

Detections

Analytics