Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:131: ethereal Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the ethereal package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:131 (ethereal).
A number of vulnerabilities were discovered in versions of Ethereal prior to
version 0.10.12, including:
The SMB dissector could overflow a buffer or exhaust memory (CVE-2005-2365).
iDefense discovered that several dissectors are vulnerable to format string
A number of other portential crash issues in various dissectors have also been
This update provides Ethereal 0.10.12 which is not vulnerable to these issues.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:131
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.