Ethereal is a free open-source network protocol analysis program. The iSNS, SMB, and SNMP parser contained in Ethereal have unknown problems. Remote attackers can exploit these vulnerabilities to launch denial-of-service attacks or execute arbitrary commands on the system with process permissions.
Currently, no detailed vulnerability details are provided.
Affected Systems:
Ethereal Group Ethereal 0.9.9
Ethereal Group Ethereal 0.9.8
Ethereal Group Ethereal 0.9.7
Ethereal Group Ethereal 0.9.6
Ethereal Group Ethereal 0.9.5
Ethereal Group Ethereal 0.9.3
Ethereal Group Ethereal 0.9.2
Ethereal Group Ethereal 0.9.16
Ethereal Group Ethereal 0.9.15
Ethereal Group Ethereal 0.9.14
Ethereal Group Ethereal 0.9.13
Ethereal Group Ethereal 0.9.12
Ethereal Group Ethereal 0.9.11
Ethereal Group Ethereal 0.9.10
Ethereal Group Ethereal 0.9.1
Ethereal Group Ethereal 0.9.0
Ethereal Group Ethereal 0.8.18
Ethereal Group Ethereal 0.8
Ethereal Group Ethereal 0.10.4
Ethereal Group Ethereal 0.10.3
Ethereal Group Ethereal 0.10.2
Ethereal Group Ethereal 0.10.1
Ethereal Group Ethereal 0.10
Ethereal Group Ethereal 0.9.4
-Conectiva Linux 8.0
-Conectiva Linux 7.0
-Conectiva Linux 6.0
-Debian Linux 3.0:
-Mandrake Linux 9.1
-Mandrake Linux 9.0
-Mandrake Linux 8.2
-Mandrake Linux 8.1
-Mandrake Linux 8.0
-RedHat: Linux 8.0
-RedHat: Linux 7.3
-RedHat: Linux 7.2
-RedHat: Linux 7.1
-RedHat: Linux 7.0
Unaffected system:
Ethereal Group Ethereal 0.10.5
Patch download:
Ethereal Group Upgrade Ethereal 0.10.5
Http://www.ethereal.com/download.html
Source: Kingsoft drug overlord Information Security Network