|Category:||Conectiva Local Security Checks|
|Title:||Conectiva Security Advisory CLA-2002:505|
|Summary:||Conectiva Security Advisory CLA-2002:505|
The remote host is missing updates announced in
Ethereal is a powerful network traffic analyzer with an intuitive
This update addresses several vulnerabilities in ethereal <= 0.9.4 as
stated in the project's home page. The following protocol
dissectors were vulnerable to various kinds of attacks (mainly DoS
and arbitrary code execution): BGP, X11, DNS, GIOP, WCP, SOCKS, RSVP,
AFS and LMP.
These vulnerabilities can be exploited by an attacker who can insert
crafted packets in the wire being monitored by ethereal or make an
user open a trace file with such packets inside.
The apt tool can be used to perform RPM package upgrades
by running 'apt-get update' followed by 'apt-get upgrade'
Risk factor : High
|Copyright||Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com|
|This is only one of 40037 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.