Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2006:0420

The remote host is missing updates announced in
advisory RHSA-2006:0420.

Ethereal is a program for monitoring network traffic.

Several denial of service bugs were found in Ethereal's protocol
dissectors. Ethereal could crash or stop responding if it reads a malformed
packet off the network. (CVE-2006-1932, CVE-2006-1933, CVE-2006-1937,
CVE-2006-1938, CVE-2006-1939, CVE-2006-1940)

Several buffer overflow bugs were found in Ethereal's COPS, telnet, and
ALCAP dissectors as well as Network Instruments file code and
NetXray/Windows Sniffer file code. Ethereal could crash or execute
arbitrary code if it reads a malformed packet off the network.
(CVE-2006-1934, CVE-2006-1935, CVE-2006-1936)

Users of ethereal should upgrade to these updated packages containing
version 0.99.0, which is not vulnerable to these issues.

Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

Risk factor : Critical

CVSS Score:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2006-1932
BugTraq ID: 17682
Debian Security Information: DSA-1049 (Google Search)
SGI Security Advisory: 20060501-01-U
SuSE Security Announcement: SUSE-SR:2006:010 (Google Search)
XForce ISS Database: ethereal-oid-printing-offbyone(26012)
Common Vulnerability Exposure (CVE) ID: CVE-2006-1933
XForce ISS Database: ethereal-ber-loop-dos(26024)
XForce ISS Database: ethereal-uma-dissector-dos(26008)
Common Vulnerability Exposure (CVE) ID: CVE-2006-1934
XForce ISS Database: ethereal-alcap-dissector-bo(26014)
XForce ISS Database: ethereal-net-instr-bo(26026)
XForce ISS Database: ethereal-netxwin-sniffer-bo(26027)
Common Vulnerability Exposure (CVE) ID: CVE-2006-1935
XForce ISS Database: ethereal-cops-dissector-bo(26013)
Common Vulnerability Exposure (CVE) ID: CVE-2006-1936
XForce ISS Database: ethereal-telnet-dissector-bo(26029)
Common Vulnerability Exposure (CVE) ID: CVE-2006-1937
XForce ISS Database: ethereal-aim-dos(26019)
XForce ISS Database: ethereal-general-dissector-dos(26018)
XForce ISS Database: ethereal-h245-dos(26011)
XForce ISS Database: ethereal-h248-dissector-dos(26007)
XForce ISS Database: ethereal-h248-dos(26031)
XForce ISS Database: ethereal-srvloc-dos(26010)
XForce ISS Database: ethereal-statistics-counter-dos(26015)
XForce ISS Database: ethereal-x509if-dissector-dos(26009)
Common Vulnerability Exposure (CVE) ID: CVE-2006-1938
XForce ISS Database: ethereal-smbpipe-dos(26023)
XForce ISS Database: ethereal-sniffer-capture-dos(26016)
Common Vulnerability Exposure (CVE) ID: CVE-2006-1939
XForce ISS Database: ethereal-asn1-dissector-dos(26022)
XForce ISS Database: ethereal-asn1based-dissector-dos(26030)
XForce ISS Database: ethereal-dcerpc-dissector-dos(26021)
XForce ISS Database: ethereal-dcerpcnt-dissector-dos(26032)
XForce ISS Database: ethereal-display-filter-dos(26017)
XForce ISS Database: ethereal-gsmsms-dissector-dos(26028)
XForce ISS Database: ethereal-per-diss-dos(26033)
XForce ISS Database: ethereal-rpc-dos(26020)
Common Vulnerability Exposure (CVE) ID: CVE-2006-1940
XForce ISS Database: ethereal-sndcp-dissector-dos(26025)
CopyrightCopyright (c) 2006 E-Soft Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.