The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a certain malformed packet, which causes Ethereal to allocate memory incorrectly, possibly due to zero-length fields.
Max CVSS
5.0
EPSS Score
0.65%
Published
2002-06-25
Updated
2008-09-10
Buffer overflow in X11 dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code while Ethereal is parsing keysyms.
Max CVSS
7.5
EPSS Score
2.93%
Published
2002-06-18
Updated
2016-10-18
DNS dissector in Ethereal before 0.9.3 allows remote attackers to cause a denial of service (CPU consumption) via a malformed packet that causes Ethereal to enter an infinite loop.
Max CVSS
5.0
EPSS Score
0.79%
Published
2002-06-18
Updated
2016-10-18
Vulnerability in GIOP dissector in Ethereal before 0.9.3 allows remote attackers to cause a denial of service (memory consumption).
Max CVSS
5.0
EPSS Score
0.79%
Published
2002-06-18
Updated
2016-10-18
Buffer overflows in Ethereal 0.9.4 and earlier allow remote attackers to cause a denial of service or execute arbitrary code via (1) the BGP dissector, or (2) the WCP dissector.
Max CVSS
7.5
EPSS Score
2.70%
Published
2002-08-12
Updated
2008-09-05
Ethereal 0.9.4 and earlier allows remote attackers to cause a denial of service and possibly excecute arbitrary code via the (1) SOCKS, (2) RSVP, (3) AFS, or (4) LMP dissectors, which can be caused to core dump.
Max CVSS
7.5
EPSS Score
0.69%
Published
2002-08-12
Updated
2008-09-05
Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets.
Max CVSS
7.5
EPSS Score
0.59%
Published
2002-09-24
Updated
2008-09-10
Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service (infinite loop) via malformed messages.
Max CVSS
5.0
EPSS Score
0.56%
Published
2002-12-23
Updated
2008-09-05
Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possibly related to a missing field for EndVerifyAck messages.
Max CVSS
7.5
EPSS Score
1.80%
Published
2002-12-23
Updated
2008-09-05
9 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!