{"vuid":"VU#641013","idnumber":"641013","name":"Ethereal contains multiple one-byte buffer overflows in several dissectors","keywords":["Ethereal","one-byte","buffer overflow","dissector","AIM","GIOP Gryphon","OSPF","PPTP","Quake","Quake2","Quake3","Rsync","SMB","SMPP","and TSP"],"overview":"Ethereal is a network traffic analysis package. Several packet dissectors contain a vulnerability that may cause a denial-of-service situation.","clean_desc":"Several packet dissectors for Ethereal contain a one-byte buffer overflow vulnerability. According to the Ethereal Advisory, tvb_get_nstringz() and tvb_get_nstringz0() were used in an unsafe manner. Versions 0.9.11 and earlier of dissectors for AIM, GIOP Gryphon, OSPF, PPTP, Quake, Quake2, Quake3, Rsync, SMB, SMPP, and TSP are affected.","impact":"It may be possible for a remote attacker to crash the program or run arbitrary code on the system via a crafted packet.","resolution":"Upgrade to version 0.9.12 which resolves this issue.","workarounds":"","sysaffected":"","thanks":"Thanks to Timo Sirainen for reporting this vulnerability.","author":"This document was written by Jason A Rafail and is based upon information in the Ethereal Advisory.","public":["http://www.ethereal.com/appnotes/enpa-sa-00009.html","http://www.securityfocus.com/bid/7493"],"cveids":[""],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2003-05-09T13:27:59Z","publicdate":"2003-05-01T00:00:00Z","datefirstpublished":"2003-05-12T18:38:01Z","dateupdated":"2004-08-19T15:29:26Z","revision":13,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"14","cam_exploitation":"0","cam_internetinfrastructure":"5","cam_population":"10","cam_impact":"8","cam_easeofexploitation":"14","cam_attackeraccessrequired":"15","cam_scorecurrent":"5.985","cam_scorecurrentwidelyknown":"7.875","cam_scorecurrentwidelyknownexploited":"14.175","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":5.985,"vulnote":null}