CVE-2002-0404
https://notcve.org/view.php?id=CVE-2002-0404
Vulnerability in GIOP dissector in Ethereal before 0.9.3 allows remote attackers to cause a denial of service (memory consumption). • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-037.0.txt http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000505 http://marc.info/?l=bugtraq&m=102268626526119&w=2 http://www.debian.org/security/2002/dsa-130 http://www.ethereal.com/appnotes/enpa-sa-00004.html http://www.iss.net/security_center/static/9206.php http://www.redhat.com/support/errata/RHSA-2002-036.html http://www.redhat.com/support/errata/RHSA-2002-088.html http://www.redhat.com/su •
CVE-2002-0353
https://notcve.org/view.php?id=CVE-2002-0353
The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a certain malformed packet, which causes Ethereal to allocate memory incorrectly, possibly due to zero-length fields. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000474 http://www.debian.org/security/2002/dsa-130 http://www.ethereal.com/appnotes/enpa-sa-00003.html http://www.iss.net/security_center/static/8952.php http://www.redhat.com/support/errata/RHSA-2002-088.html http://www.securityfocus.com/bid/4604 https://access.redhat.com/security/cve/CVE-2002-0353 https://bugzilla.redhat.com/show_bug.cgi?id=1616761 •
CVE-2000-1174 – Ethereal - AFS Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-1174
Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username. • https://www.exploit-db.com/exploits/20414 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:81.ethereal.asc http://archives.neohapsis.com/archives/bugtraq/2000-11/0251.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000342 http://www.debian.org/security/2000/20001122a http://www.redhat.com/support/errata/RHSA-2000-116.html http://www.securityfocus.com/bid/1972 https://exchange.xforce.ibmcloud.com/vulnerabilities/5557 •
CVE-1999-1227
https://notcve.org/view.php?id=CVE-1999-1227
Ethereal allows local users to overwrite arbitrary files via a symlink attack on the packet capture file. • http://www.ethereal.com/lists/ethereal-dev/199907/msg00126.html http://www.ethereal.com/lists/ethereal-dev/199907/msg00130.html https://exchange.xforce.ibmcloud.com/vulnerabilities/3334 •
CVE-2000-0333 – Ethereal 0.8.4/0.8.5/0.8.6 / tcpdump 3.4/3.5 alpha - DNS Decode
https://notcve.org/view.php?id=CVE-2000-0333
tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet. • https://www.exploit-db.com/exploits/19891 https://www.exploit-db.com/exploits/19892 http://www.securityfocus.com/bid/1165 http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.SOL.4.10.10005021942380.2077-100000%40paranoia.pgci.ca •