CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 0CVE-2003-0429
https://notcve.org/view.php?id=CVE-2003-0429
18 Jun 2003 — The OSI dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via invalid IPv4 or IPv6 prefix lengths, possibly triggering a buffer overflow. El examinador OSI en Ethereal 0.9.12 y anteriores permite atacantes remotos causar una denegación de servicio y posiblemente ejecutar código arbitrario mediante longitudes de prefijos IPv4 o IPv6 inválidas, posiblemente disparando un desbordamiento de búfer. • ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-030.0.txt •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0431
https://notcve.org/view.php?id=CVE-2003-0431
18 Jun 2003 — The tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not properly handle a zero-length buffer size, with unknown consequences. La función tvb_get_nstringz0 en Ethereal 0.9.12 y anteriores no maneja adecuadamente un búfer de tamaño cero, con consecuencias desconocidas. • ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-030.0.txt •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0432
https://notcve.org/view.php?id=CVE-2003-0432
18 Jun 2003 — Ethereal 0.9.12 and earlier does not handle certain strings properly, with unknown consequences, in the (1) BGP, (2) WTP, (3) DNS, (4) 802.11, (5) ISAKMP, (6) WSP, (7) CLNP, (8) ISIS, and (9) RMI dissectors. Ethereal 0.9.12 y anteriores no maneja ciertas cadenas adecuadamente, con consecuencias desconocidas, en los disectores (1) BGP, (2) WTP, (3) DNS, (4) 802.11, (5) ISAKMP, (6) WSP, (7) CLNP, (8) ISIS, and (9) RMI. • ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-030.0.txt •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0428
https://notcve.org/view.php?id=CVE-2003-0428
18 Jun 2003 — Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (memory consumption) via a certain NDR string. Vulnerabilidad desconocida en el diseccionador de DCERPC en Ethereal 0.9.12 y anteriores permite a atacantes remotos causar una denegación de servicio (consumición de memoria) mediante una cierta cadena NDR. • ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-030.0.txt •
CVSS: 9.8EPSS: 11%CPEs: 1EXPL: 0CVE-2003-0357
https://notcve.org/view.php?id=CVE-2003-0357
30 May 2003 — Multiple integer overflow vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) Mount and (2) PPP dissectors. Múltiples vulnerabilidades de desbordamiento de búfer en Ethereal 0.9.11 y anteriores permiten que atacantes remotos provoquen una denegación de servicio y posiblemente ejecuten código arbitrario mediante los disectores (1) Mount y (2) PPP • http://rhn.redhat.com/errata/RHSA-2003-077.html •
CVSS: 10.0EPSS: 8%CPEs: 1EXPL: 0CVE-2003-0356
https://notcve.org/view.php?id=CVE-2003-0356
30 May 2003 — Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) AIM, (2) GIOP Gryphon, (3) OSPF, (4) PPTP, (5) Quake, (6) Quake2, (7) Quake3, (8) Rsync, (9) SMB, (10) SMPP, and (11) TSP dissectors, which do not properly use the tvb_get_nstringz and tvb_get_nstringz0 functions. Múltiples vulnerabilidades off-by-one en Ethereal 0.9.11 y anteriores permiten que atacantes remotos provoquen una denegación de se... • http://www.debian.org/security/2003/dsa-313 • CWE-193: Off-by-one Error •
CVSS: 9.8EPSS: 2%CPEs: 11EXPL: 0CVE-2003-0159
https://notcve.org/view.php?id=CVE-2003-0159
26 Mar 2003 — Heap-based buffer overflow in the NTLMSSP code for Ethereal 0.9.9 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code. • http://marc.info/?l=bugtraq&m=104741640924709&w=2 •
CVSS: 9.8EPSS: 8%CPEs: 11EXPL: 1CVE-2003-0081
https://notcve.org/view.php?id=CVE-2003-0081
18 Mar 2003 — Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9.9 allows remote attackers to execute arbitrary code via SOCKS packets containing format string specifiers. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000627 •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2002-1356
https://notcve.org/view.php?id=CVE-2002-1356
17 Dec 2002 — Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possibly related to a missing field for EndVerifyAck messages. • http://www.ethereal.com/appnotes/enpa-sa-00007.html •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1355
https://notcve.org/view.php?id=CVE-2002-1355
17 Dec 2002 — Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service (infinite loop) via malformed messages. • http://www.ethereal.com/appnotes/enpa-sa-00007.html •