OpenPKG Corporation → Security → Security Advisories

OpenPKG Security Advisory

OpenPKG-SA-2004.015

Publisher Name:          OpenPKG GmbH
Publisher Home:          http://openpkg.com/

Advisory Id (public):    OpenPKG-SA-2004.015
Advisory Type:           OpenPKG Security Advisory (SA)
Advisory Directory:      http://openpkg.com/go/OpenPKG-SA
Advisory Document:       http://openpkg.com/go/OpenPKG-SA-2004.015
Advisory Published:      2009-07-04 15:30 UTC

Issue Id (internal):     OpenPKG-SI-20040416.01
Issue First Created:     2004-04-16
Issue Last Modified:     2006-11-28
Issue Revision:          06


Subject Name:            ethereal
Subject Summary:         Graphical Realtime Network Protocol Analyzer
Subject Home:            http://www.ethereal.com/
Subject Versions:        * <= 0.10.2

Vulnerability Id:        CVE-2004-0176, CVE-2004-0365
Vulnerability Scope:     global (not OpenPKG specific)

Attack Feasibility:      run-time
Attack Vector:           remote network
Attack Impact:           arbitrary code execution

Description:
    According to a vendor security advisory [0] based on hints from Stefan
    Esser and Jonathan Heussser, several vulnerabilities of various types
    exist in the Ethereal network protocol analyzer [1]. Namely, it may be
    possible to make Ethereal crash or run arbitrary code by injecting a
    purposefully malformed packet onto the wire, by convincing someone to
    read a malformed packet trace file, or by creating a malformed color
    filter file.
    
    CVE-2004-0176 and CVE-2004-0365 are referring to the problems
    concerning protocol dissectors and RADIUS packets.
    
    The zero-length presentation protocol selector vulnerability named in
    the Ethereal vendor advisory does not affect OpenPKG though, because
    such presentation protocol selectors are not implemented in any
    Ethereal versions released by OpenPKG.

References:
    [0]  http://www.ethereal.com/appnotes/enpa-sa-00013.html
    [1]  http://www.ethereal.com/
    [2]  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0176
    [3]  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0365
    [4]  http://www.openpkg.org/tutorial.html#regular-source
    [5]  http://www.openpkg.org/tutorial.html#regular-binary
    [6]  ftp://ftp.openpkg.org/release/1.3/UPD/ethereal-0.9.14-1.3.1.src.rpm
    [7]  ftp://ftp.openpkg.org/release/2.0/UPD/ethereal-0.10.0a-2.0.1.src.rpm
    [8]  ftp://ftp.openpkg.org/release/1.3/UPD/
    [9]  ftp://ftp.openpkg.org/release/2.0/UPD/
    [10] http://www.openpkg.org/security.html#signature


Primary Package Name:    ethereal
Primary Package Home:    http://openpkg.org/go/package/ethereal

Affected Distribution:   Affected Branch:  Affected Package:
OpenPKG Community        1.3-SOLID         ethereal-0.9.14-1.3.0
OpenPKG Community        2.0-SOLID         ethereal-0.10.0a-2.0.0
OpenPKG Community        CURRENT           ethereal-0.10.2-20040329

Corrected Distribution:  Corrected Branch: Corrected Package:
OpenPKG Community        1.3-SOLID         ethereal-0.9.14-1.3.1
OpenPKG Community        2.0-SOLID         ethereal-0.10.0a-2.0.1
OpenPKG Community        CURRENT           ethereal-0.10.3-20040330

→ Plain Text Version

Latest Advisories:
2007.023 perl
2007.022 bind
2007.021 wordpress
2007.020 php
2007.019 php
2007.018 freetype
2007.017 ratbox
2007.016 gd
2007.015 quagga
2007.014 bind
→ more...

Validation: XHTML | CSS

Organisations
Products
- OpenPKG Community
- Features
- Technology Pitch
- Package Database
- Registration
  - Registration Overview
  - Registry Service
- Download
  - Download Policy
  - Download Service
- Sales
  - Request
Services
Security
Documentation
- Flyer
- Presentation
- Showcase
- Article
- Thesis
- Tutorial
- Packaging
- F.A.Q
Community
My OpenPKG