ID de Prueba:	1.3.6.1.4.1.25623.1.0.52434
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: ethereal, ethereal-lite, tethereal, tethereal-lite
Resumen:	The remote host is missing an update to the system;as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: ethereal ethereal-lite tethereal tethereal-lite CVE-2004-0633 The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow. CVE-2004-0634 The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service (process crash) via a handle without a policy name, which causes a null dereference. CVE-2004-0635 The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-bounds read. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0633 CERT/CC vulnerability note: VU#829422 http://www.kb.cert.org/vuls/id/829422 Conectiva Linux advisory: CLA-2005:916 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000916 http://www.redhat.com/archives/fedora-announce-list/2004-July/msg00013.html http://www.redhat.com/archives/fedora-announce-list/2004-July/msg00014.html http://www.gentoo.org/security/en/glsa/glsa-200407-08.xml http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:067 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9931 http://www.redhat.com/support/errata/RHSA-2004-378.html http://securitytracker.com/id?1010655 http://secunia.com/advisories/12024 XForce ISS Database: ethereal-isns-dos(16630) https://exchange.xforce.ibmcloud.com/vulnerabilities/16630 Common Vulnerability Exposure (CVE) ID: CVE-2004-0634 CERT/CC vulnerability note: VU#518782 http://www.kb.cert.org/vuls/id/518782 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10252 XForce ISS Database: ethereal-smb-sid-dos(16631) https://exchange.xforce.ibmcloud.com/vulnerabilities/16631 Common Vulnerability Exposure (CVE) ID: CVE-2004-0635 CERT/CC vulnerability note: VU#835846 http://www.kb.cert.org/vuls/id/835846 Debian Security Information: DSA-528 (Google Search) http://www.debian.org/security/2004/dsa-528 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9721 XForce ISS Database: ethereal-snmp-community-dos(16632) https://exchange.xforce.ibmcloud.com/vulnerabilities/16632
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.