Test Kennung:	1.3.6.1.4.1.25623.1.0.52433
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Ports: ethereal, ethereal-lite, tethereal, tethereal-lite
Zusammenfassung:	The remote host is missing an update to the system;as announced in the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: ethereal ethereal-lite tethereal tethereal-lite CVE-2004-0504 Ethereal 0.10.3 allows remote attackers to cause a denial of service (crash) via certain SIP messages between Hotsip servers and clients. CVE-2004-0505 The AIM dissector in Ethereal 0.10.3 allows remote attackers to cause a denial of service (assert error) via unknown attack vectors. CVE-2004-0506 The SPNEGO dissector in Ethereal 0.9.8 to 0.10.3 allows remote attackers to cause a denial of service (crash) via unknown attack vectors that cause a null pointer dereference. CVE-2004-0507 Buffer overflow in the MMSE dissector for Ethereal 0.10.1 to 0.10.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0504 BugTraq ID: 10347 http://www.securityfocus.com/bid/10347 Computer Incident Advisory Center Bulletin: O-150 http://www.ciac.org/ciac/bulletins/o-150.shtml Conectiva Linux advisory: CLA-2005:916 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000916 http://security.gentoo.org/glsa/glsa-200406-01.xml http://www.ethereal.com/lists/ethereal-users/200405/msg00018.html http://www.osvdb.org/6131 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9769 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A982 RedHat Security Advisories: RHSA-2004:234 http://securitytracker.com/id?1010158 http://secunia.com/advisories/11608 http://secunia.com/advisories/11776 http://secunia.com/advisories/11836 SGI Security Advisory: 20040604-01-U ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc SGI Security Advisory: 20040605-01-U ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc XForce ISS Database: ethereal-sip-packet-dos(16148) https://exchange.xforce.ibmcloud.com/vulnerabilities/16148 Common Vulnerability Exposure (CVE) ID: CVE-2004-0505 http://www.osvdb.org/6132 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9433 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A986 XForce ISS Database: ethereal-aim-dissector-dos(16150) https://exchange.xforce.ibmcloud.com/vulnerabilities/16150 Common Vulnerability Exposure (CVE) ID: CVE-2004-0506 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9695 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A987 XForce ISS Database: ethereal-spnego-dos(16151) https://exchange.xforce.ibmcloud.com/vulnerabilities/16151 Common Vulnerability Exposure (CVE) ID: CVE-2004-0507 http://www.osvdb.org/6134 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11026 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A988 http://rhn.redhat.com/errata/RHSA-2004-234.html XForce ISS Database: ethereal-mmse-bo(16152) https://exchange.xforce.ibmcloud.com/vulnerabilities/16152
Copyright	Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.