Page 10 of 53 results (0.035 seconds)

CVSS: 7.5EPSS: 2%CPEs: 11EXPL: 0

Heap-based buffer overflow in the NTLMSSP code for Ethereal 0.9.9 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code. • http://marc.info/?l=bugtraq&m=104741640924709&w=2 http://www.ethereal.com/appnotes/enpa-sa-00008.html http://www.mandriva.com/security/advisories?name=MDKSA-2003:051 http://www.novell.com/linux/security/advisories/2003_019_ethereal.html http://www.redhat.com/support/errata/RHSA-2003-077.html http://www.securityfocus.com/bid/7050 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A55 https://access.redhat.com/security/cve/CVE-2003-0159 https:&#x •

CVSS: 7.5EPSS: 4%CPEs: 11EXPL: 1

Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9.9 allows remote attackers to execute arbitrary code via SOCKS packets containing format string specifiers. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000627 http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:051 http://seclists.org/lists/fulldisclosure/2003/Mar/0080.html http://www.debian.org/security/2003/dsa-258 http://www.ethereal.com/appnotes/enpa-sa-00008.html http://www.guninski.com/etherre.html http://www.linuxsecurity.com/advisories/gentoo_advisory-2949.html http://www.novell.com/linux/security/advisories/2003_019_ethereal.html http://www.redhat.com •

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0

Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possibly related to a missing field for EndVerifyAck messages. • http://www.ethereal.com/appnotes/enpa-sa-00007.html http://www.ethereal.com/cgi-bin/viewcvs.cgi/ethereal/packet-lmp.c#rev1.13 http://www.redhat.com/support/errata/RHSA-2002-290.html https://access.redhat.com/security/cve/CVE-2002-1356 https://bugzilla.redhat.com/show_bug.cgi?id=1616884 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service (infinite loop) via malformed messages. • http://www.ethereal.com/appnotes/enpa-sa-00007.html http://www.ethereal.com/cgi-bin/viewcvs.cgi/ethereal/packet-bgp.c.diff?r1=1.68&r2=1.69 http://www.redhat.com/support/errata/RHSA-2002-290.html https://access.redhat.com/security/cve/CVE-2002-1355 https://bugzilla.redhat.com/show_bug.cgi?id=1616883 •

CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0

Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets. Desbordamiento de búfer en el disector ISIS para Ethereal 0.9.5 y anteriores permite a atacantes remotos causar una denegación de servicio o ejecutar código arbitrario mediante paquetes malformados. • http://www.ethereal.com/appnotes/enpa-sa-00006.html https://access.redhat.com/security/cve/CVE-2002-0834 https://bugzilla.redhat.com/show_bug.cgi?id=1616817 •