Ethereal Group : Security Vulnerabilities, CVEs, Published In December 2002
Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possibly related to a missing field for EndVerifyAck messages.
Max CVSS
7.5
EPSS Score
1.80%
Published
2002-12-23
Updated
2008-09-05
Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service (infinite loop) via malformed messages.
Max CVSS
5.0
EPSS Score
0.56%
Published
2002-12-23
Updated
2008-09-05
2 vulnerabilities found