|
Family: Debian Local Security Checks --> Category: infos
[DSA313] DSA-313-1 ethereal Vulnerability Scan
Vulnerability Scan Summary DSA-313-1 ethereal
Detailed Explanation for this Vulnerability Test
Timo Sirainen discovered several vulnerabilities in ethereal, a
network traffic analyzer. These include one-byte buffer overflows in
the AIM, GIOP Gryphon, OSPF, PPTP, Quake, Quake2, Quake3, Rsync, SMB,
SMPP, and TSP dissectors, and integer overflows in the Mount and PPP
dissectors.
For the stable distribution (woody) these problems have been fixed in
version 0.9.4-1woody4.
The old stable distribution (potato) does not appear to contain these
vulnerabilities.
For the unstable distribution (sid) these problems are fixed in version
0.9.12-1.
We recommend that you update your ethereal package.
Solution : http://www.debian.org/security/2003/dsa-313
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|