Page 12 of 64 results (0.003 seconds)

CVSS: 7.5EPSS: 9%CPEs: 1EXPL: 0

Multiple integer overflow vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) Mount and (2) PPP dissectors. Múltiples vulnerabilidades de desbordamiento de búfer en Ethereal 0.9.11 y anteriores permiten que atacantes remotos provoquen una denegación de servicio y posiblemente ejecuten código arbitrario mediante los disectores (1) Mount y (2) PPP • http://rhn.redhat.com/errata/RHSA-2003-077.html http://www.debian.org/security/2003/dsa-313 http://www.ethereal.com/appnotes/enpa-sa-00009.html http://www.kb.cert.org/vuls/id/232164 http://www.kb.cert.org/vuls/id/361700 http://www.mandriva.com/security/advisories?name=MDKSA-2003:067 http://www.securityfocus.com/bid/7494 http://www.securityfocus.com/bid/7495 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A73 https://access& •

CVSS: 7.5EPSS: 2%CPEs: 11EXPL: 0

Heap-based buffer overflow in the NTLMSSP code for Ethereal 0.9.9 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code. • http://marc.info/?l=bugtraq&m=104741640924709&w=2 http://www.ethereal.com/appnotes/enpa-sa-00008.html http://www.mandriva.com/security/advisories?name=MDKSA-2003:051 http://www.novell.com/linux/security/advisories/2003_019_ethereal.html http://www.redhat.com/support/errata/RHSA-2003-077.html http://www.securityfocus.com/bid/7050 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A55 https://access.redhat.com/security/cve/CVE-2003-0159 https:&#x •

CVSS: 7.5EPSS: 4%CPEs: 11EXPL: 1

Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9.9 allows remote attackers to execute arbitrary code via SOCKS packets containing format string specifiers. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000627 http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:051 http://seclists.org/lists/fulldisclosure/2003/Mar/0080.html http://www.debian.org/security/2003/dsa-258 http://www.ethereal.com/appnotes/enpa-sa-00008.html http://www.guninski.com/etherre.html http://www.linuxsecurity.com/advisories/gentoo_advisory-2949.html http://www.novell.com/linux/security/advisories/2003_019_ethereal.html http://www.redhat.com •

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0

Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possibly related to a missing field for EndVerifyAck messages. • http://www.ethereal.com/appnotes/enpa-sa-00007.html http://www.ethereal.com/cgi-bin/viewcvs.cgi/ethereal/packet-lmp.c#rev1.13 http://www.redhat.com/support/errata/RHSA-2002-290.html https://access.redhat.com/security/cve/CVE-2002-1356 https://bugzilla.redhat.com/show_bug.cgi?id=1616884 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service (infinite loop) via malformed messages. • http://www.ethereal.com/appnotes/enpa-sa-00007.html http://www.ethereal.com/cgi-bin/viewcvs.cgi/ethereal/packet-bgp.c.diff?r1=1.68&r2=1.69 http://www.redhat.com/support/errata/RHSA-2002-290.html https://access.redhat.com/security/cve/CVE-2002-1355 https://bugzilla.redhat.com/show_bug.cgi?id=1616883 •