Rapid7 Vulnerability & Exploit Database

SUSE-SR:2005:025:vuln7: ethereal vulnerability

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

SUSE-SR:2005:025:vuln7: ethereal vulnerability

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

11/04/2005

Created

07/25/2018

Added

12/13/2005

Modified

11/18/2015

Description

Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute arbitrary code via unknown vectors in the (1) SLIMP3 and (2) AgentX dissector.

Solution(s)

References

https://attackerkb.com/topics/cve-2005-3241
15148
CVE - 2005-3241
CVE - 2005-3242
CVE - 2005-3243
CVE - 2005-3244
DSA-1171
20121
20122
20123
20124
20125
20126
20127
20133
20135
OVAL10558
OVAL10582
OVAL9665
OVAL9836
RHSA-2005:809
http://www.debian.org/security/2006/dsa-1171
http://www.ethereal.com/appnotes/enpa-sa-00021.html
http://www.frsirt.com/exploits/20051020.ethereal_slimp3_bof.py.php
http://www.novell.com/linux/security/advisories/2005_25_sr.html
http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00003.html

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;