Ethereal Group: >> Ethereal Security Vulnerabilities
DNS dissector in Ethereal before 0.9.3 allows remote attackers to cause a denial of service (CPU consumption) via a malformed packet that causes Ethereal to enter an infinite loop.
CVSS Score
5.0
EPSS Score
0.018
Published
2002-06-18
Vulnerability in GIOP dissector in Ethereal before 0.9.3 allows remote attackers to cause a denial of service (memory consumption).
CVSS Score
5.0
EPSS Score
0.018
Published
2002-06-18
Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username.
CVSS Score
7.5
EPSS Score
0.096
Published
2001-01-09
Ethereal allows local users to overwrite arbitrary files via a symlink attack on the packet capture file.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-07-30
tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet.
CVSS Score
5.0
EPSS Score
0.034
Published
1999-05-31
Page 11