aru Posted June 16, 2003 Report Share Posted June 16, 2003 MandrakeSoft Security Advisory MDKSA-2003:067 : ethereal June 16th, 2003 Updated ethereal packages fix multiple vulnerabilities Several vulnerabilities in ethereal were discovered by Timo Sirainen. Integer overflows were found in the Mount and PPP dissectors, as well as one-byte buffer overflows in the AIM, GIOP Gryphon, OSPF, PPTP, Quake, Quake2, Quake3, Rsync, SMB, SMPP, and TSP dissectors. These vulnerabilties were corrected in ethereal 0.9.12. The released versions of Mandrake GNU/Linux affected are: 9.1 [*] 9.1/PPC Full information about this advisory, including the updated packages, is available at: www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2003:067 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?n...e=CAN-2003-0356 http://cve.mitre.org/cgi-bin/cvename.cgi?n...e=CAN-2003-0357 http://www.ethereal.com/appnotes/enpa-sa-00009.html Posted automatically by aru (mdksec2mub v0.0.6) Link to comment Share on other sites More sharing options...
Recommended Posts