Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2004:067: ethereal Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the ethereal package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2004:067 (ethereal).
Three vulnerabilities were discovered in Ethereal versions prior to 0.10.5 in
the iSNS, SMB SID, and SNMP dissectors. It may be possible to make Ethereal
crash or run arbitrary code by injecting a purposefully malformed packet into
the wire or by convincing someone to read a malformed packet trace file.
These vulnerabilities have been corrected in Ethereal 0.10.5.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2004:067
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.