Ethereal

Do you want an email whenever new security vulnerabilities are reported in Ethereal?

By the Year

In 2024 there have been 0 vulnerabilities in Ethereal . Ethereal did not have any published security vulnerabilities last year.

Year	Vulnerabilities	Average Score
2024	0	0.00
2023	0	0.00
2022	0	0.00
2021	0	0.00
2020	0	0.00
2019	0	0.00
2018	0	0.00

It may take a day or so for new Ethereal vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Ethereal Security Vulnerabilities

The dissect_attribute_value_pairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2 allows remote attackers to cause a denial of service (crash) via a malformed RADIUS packet

CVE-2004-0365 7.5 - High - May 04, 2004

The dissect_attribute_value_pairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2 allows remote attackers to cause a denial of service (crash) via a malformed RADIUS packet that triggers a null dereference.

NULL Pointer Dereference

The Q.931 dissector in Ethereal before 0.10.0, and Tethereal

CVE-2003-1013 7.5 - High - January 05, 2004

The Q.931 dissector in Ethereal before 0.10.0, and Tethereal, allows remote attackers to cause a denial of service (crash) via a malformed Q.931, which triggers a null dereference.

NULL Pointer Dereference

Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier

CVE-2003-0356 9.8 - Critical - June 09, 2003

Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) AIM, (2) GIOP Gryphon, (3) OSPF, (4) PPTP, (5) Quake, (6) Quake2, (7) Quake3, (8) Rsync, (9) SMB, (10) SMPP, and (11) TSP dissectors, which do not properly use the tvb_get_nstringz and tvb_get_nstringz0 functions.

off-by-five

SMB dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via malformed packets

CVE-2002-0401 7.5 - High - June 18, 2002

SMB dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via malformed packets that cause Ethereal to dereference a NULL pointer.

NULL Pointer Dereference

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Debian Linux or by Ethereal? Click the Watch button to subscribe.

Ethereal
Vendor

Ethereal
Product

Ethereal

By the Year

Recent Ethereal Security Vulnerabilities

The dissect_attribute_value_pairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2 allows remote attackers to cause a denial of service (crash) via a malformed RADIUS packet CVE-2004-0365 7.5 - High - May 04, 2004

The Q.931 dissector in Ethereal before 0.10.0, and Tethereal CVE-2003-1013 7.5 - High - January 05, 2004

Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier CVE-2003-0356 9.8 - Critical - June 09, 2003

SMB dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via malformed packets CVE-2002-0401 7.5 - High - June 18, 2002

Stay on top of Security Vulnerabilities

Ethereal Vendor

EtherealProduct

The dissect_attribute_value_pairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2 allows remote attackers to cause a denial of service (crash) via a malformed RADIUS packet

CVE-2004-0365 7.5 - High - May 04, 2004

The Q.931 dissector in Ethereal before 0.10.0, and Tethereal

CVE-2003-1013 7.5 - High - January 05, 2004

Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier

CVE-2003-0356 9.8 - Critical - June 09, 2003

SMB dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via malformed packets

CVE-2002-0401 7.5 - High - June 18, 2002

Ethereal
Vendor

Ethereal
Product