Ethereal Group Ethereal vulnerabilities

104 known vulnerabilities affecting ethereal_group/ethereal.

Total CVEs

104

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL7HIGH25MEDIUM72

Vulnerabilities

Page 5 of 6

CVE-2004-0176MEDIUMCVSS 5.0PoCv0.8.13v0.8.14+22 more2004-05-04

CVE-2004-0176 [MEDIUM] CVE-2004-0176: Multiple buffer overflows in Ethereal 0.8.13 to 0.10.2 allow remote attackers to cause a denial of s Multiple buffer overflows in Ethereal 0.8.13 to 0.10.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) NetFlow, (2) IGAP, (3) EIGRP, (4) PGM, (5) IrDA, (6) BGP, (7) ISUP, or (8) TCAP dissectors.

nvd

CVE-2003-1012MEDIUMCVSS 5.0v0.9v0.9.1+15 more2004-01-05

CVE-2003-1012 [MEDIUM] CVE-2003-1012: The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.

nvd

CVE-2003-0927HIGHCVSS 7.5v0.9v0.9.1+14 more2003-12-01

CVE-2003-0927 [HIGH] CVE-2003-0927: Heap-based buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial Heap-based buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the SOCKS dissector.

nvd

CVE-2003-0925HIGHCVSS 7.5v0.9v0.9.1+14 more2003-12-01

CVE-2003-0925 [HIGH] CVE-2003-0925: Buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial of service Buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed GTP MSISDN string.

nvd

CVE-2003-0926MEDIUMCVSS 5.0v0.9v0.9.1+14 more2003-12-01

CVE-2003-0926 [MEDIUM] CVE-2003-0926: Ethereal 0.9.15 and earlier, and Tethereal, allows remote attackers to cause a denial of service (cr Ethereal 0.9.15 and earlier, and Tethereal, allows remote attackers to cause a denial of service (crash) via certain malformed (1) ISAKMP or (2) MEGACO packets.

nvd

CVE-2003-0431CRITICALCVSS 10.0≤ 0.9.122003-07-24

CVE-2003-0431 [CRITICAL] CVE-2003-0431: The tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not properly handle a zero-length The tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not properly handle a zero-length buffer size, with unknown consequences.

nvd

CVE-2003-0432CRITICALCVSS 10.0≤ 0.9.122003-07-24

CVE-2003-0432 [CRITICAL] CVE-2003-0432: Ethereal 0.9.12 and earlier does not handle certain strings properly, with unknown consequences, in Ethereal 0.9.12 and earlier does not handle certain strings properly, with unknown consequences, in the (1) BGP, (2) WTP, (3) DNS, (4) 802.11, (5) ISAKMP, (6) WSP, (7) CLNP, (8) ISIS, and (9) RMI dissectors.

nvd

CVE-2003-0429HIGHCVSS 7.5≤ 0.9.122003-07-24

CVE-2003-0429 [HIGH] CVE-2003-0429: The OSI dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of servic The OSI dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via invalid IPv4 or IPv6 prefix lengths, possibly triggering a buffer overflow.

nvd

CVE-2003-0430MEDIUMCVSS 5.0≤ 0.9.122003-07-24

CVE-2003-0430 [MEDIUM] CVE-2003-0430: The SPNEGO dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of ser The SPNEGO dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (crash) via an invalid ASN.1 value.

nvd

CVE-2003-0428MEDIUMCVSS 5.0≤ 0.9.122003-07-24

CVE-2003-0428 [MEDIUM] CVE-2003-0428: Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0.9.12 and earlier allows remote Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (memory consumption) via a certain NDR string.

nvd

CVE-2003-0357HIGHCVSS 7.5≤ 0.9.112003-06-09

CVE-2003-0357 [HIGH] CVE-2003-0357: Multiple integer overflow vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to c Multiple integer overflow vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) Mount and (2) PPP dissectors.

nvd

CVE-2003-0159HIGHCVSS 7.5v0.8.18v0.9.0+9 more2003-04-02

CVE-2003-0159 [HIGH] CVE-2003-0159: Heap-based buffer overflow in the NTLMSSP code for Ethereal 0.9.9 and earlier allows remote attacker Heap-based buffer overflow in the NTLMSSP code for Ethereal 0.9.9 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code.

nvd

CVE-2003-0081HIGHCVSS 7.5v0.8.18v0.9.0+9 more2003-03-18

CVE-2003-0081 [HIGH] CVE-2003-0081: Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9. Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9.9 allows remote attackers to execute arbitrary code via SOCKS packets containing format string specifiers.

nvd

CVE-2002-1356HIGHCVSS 7.5≤ 0.9.72002-12-23

CVE-2002-1356 [HIGH] CVE-2002-1356: Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possibly related to a missing field for EndVerifyAck messages.

nvd

CVE-2002-1355MEDIUMCVSS 5.0≤ 0.9.72002-12-23

CVE-2002-1355 [MEDIUM] CVE-2002-1355: Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote a Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service (infinite loop) via malformed messages.

nvd

CVE-2002-0834HIGHCVSS 7.5v0.8v0.8.18+6 more2002-09-24

CVE-2002-0834 [HIGH] CVE-2002-0834: Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to caus Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets.

nvd

CVE-2002-0821HIGHCVSS 7.5≤ 0.9.42002-08-12

CVE-2002-0821 [HIGH] CVE-2002-0821: Buffer overflows in Ethereal 0.9.4 and earlier allow remote attackers to cause a denial of service o Buffer overflows in Ethereal 0.9.4 and earlier allow remote attackers to cause a denial of service or execute arbitrary code via (1) the BGP dissector, or (2) the WCP dissector.

nvd

CVE-2002-0822HIGHCVSS 7.5≤ 0.9.42002-08-12

CVE-2002-0822 [HIGH] CVE-2002-0822: Ethereal 0.9.4 and earlier allows remote attackers to cause a denial of service and possibly excecut Ethereal 0.9.4 and earlier allows remote attackers to cause a denial of service and possibly excecute arbitrary code via the (1) SOCKS, (2) RSVP, (3) AFS, or (4) LMP dissectors, which can be caused to core dump.

nvd

CVE-2002-0353MEDIUMCVSS 5.0v0.9.1v0.9.22002-06-25

CVE-2002-0353 [MEDIUM] CVE-2002-0353: The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a certain malformed packet, which causes Ethereal to allocate memory incorrectly, possibly due to zero-length fields.

nvd

CVE-2002-0402HIGHCVSS 7.5v0.9.1v0.9.2+2 more2002-06-18

CVE-2002-0402 [HIGH] CVE-2002-0402: Buffer overflow in X11 dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a de Buffer overflow in X11 dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code while Ethereal is parsing keysyms.

nvd

← Previous5 / 6Next →