Name: Potential issues with Ethereal 0.9.3
Docid: enpa-sa-00004
Date: May 19, 2002
Versions affected: 0.9.3 and earlier
Severity: High
Description:
Four potential security issues have been discovered in Ethereal 0.9.3:
Versions prior to 0.9.3 are also subject to these bugs. In order to determine which version of Ethereal you have installed, do one of the following:
ethereal -vor
tethereal -v(the "v" is lowercase").
Impact:
It may be possible to make Ethereal crash or hang by injecting a purposefully malformed packet onto the wire, or by convincing someone to read a malformed packet trace file. It may be possible to make Ethereal run arbitrary code by exploiting the buffer and pointer problems.
Resolution:
Upgrade to 0.9.4.
If you are running a version prior to 0.9.4, you can disable the dissectors for each of these protocols by selecting Edit->Protocols... and deselecting them from the list.