Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2003:070: ethereal Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the ethereal package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2003:070 (ethereal).
A number of string handling bugs were found in the packet dissectors in ethereal
that can be exploited using specially crafted packets to cause ethereal to
consume excessive amounts of memory, crash, or even execute arbitray code.
These vulnerabilities have been fixed upsteam in ethereal 0.9.13 and all users
are encouraged to upgrade.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2003:070
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.