Ethereal Group : Security vulnerabilities, CVEs published in December 2002

Copy

CVE-2002-1356

Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possibly related to a missing field for EndVerifyAck messages.

Max CVSS

7.5

EPSS Score

1.80%

Published

2002-12-23

Updated

2008-09-05

CVE-2002-1355

Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service (infinite loop) via malformed messages.

Max CVSS

5.0

EPSS Score

0.56%

Published

2002-12-23

Updated

2008-09-05

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!