|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Fedora Local Security Checks >> Fedora Core 3 2005-1008: ethereal Vulnerability Assessment Details
|
Fedora Core 3 2005-1008: ethereal |
||
Check for the version of the ethereal package Detailed Explanation for this Vulnerability Assessment The remote host is missing the patch for the advisory FEDORA-2005-1008 (ethereal). Ethereal is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains tests and documentation for ethereal. A graphical user interface is packaged separately to GTK+ package. Update Information: Ethereal 0.10.13 is scheduled to be released, which fixes the following issues: The ISAKMP dissector could exhaust system memory. (CAN-2005-3241) Fixed in: r15163 Bug IDs: none Versions affected: 0.10.11 to 0.10.12. The FC-FCS dissector could exhaust system memory. (CAN-2005-3241) Fixed in: r15204 Bug IDs: 312 Versions affected: 0.9.0 to 0.10.12. The RSVP dissector could exhaust system memory. (CAN-2005-3241) Fixed in: r15206, r15600 Bug IDs: 311, 314, 382 Versions affected: 0.9.4 to 0.10.12. The ISIS LSP dissector could exhaust system memory. (CAN-2005-3241) Fixed in: r15245 Bug IDs: 320, 326 Versions affected: 0.8.18 to 0.10.12. The IrDA dissector could crash. (CAN-2005-3242) Fixed in: r15265, r15267 Bug IDs: 328, 329, 330, 334, 335, 336 Versions affected: 0.10.0 to 0.10.12. The SLIMP3 dissector could overflow a buffer. (CAN-2005-3243) Fixed in: r15279 Bug IDs: 327 Versions affected: 0.9.1 to 0.10.12. The BER dissector was susceptible to an infinite loop. (CAN-2005-3244) Fixed in: r15292 Bug IDs: none Versions affected: 0.10.3 to 0.10.12. The SCSI dissector could dereference a null pointer and crash. (CAN-2005-3246) Fixed in: r15289 Bug IDs: none Versions affected: 0.10.3 to 0.10.12. If the 'Dissect unknown RPC program numbers' option was enabled, the ONC RPC dissector might be able to exhaust system memory. This option is disabled by default. (CAN-2005-3245) Fixed in: r15290 Bug IDs: none Versions affected: 0.7.7 to 0.10.12. The sFlow dissector could dereference a null pointer and crash (CAN-2005-3246) Fixed in: r15375 Bug IDs: 356 Versions affected: 0.9.14 to 0.10.12. The RTnet dissector could dereference a null pointer and crash (CAN-2005-3246) Fixed in: r15673 Bug IDs: none Versions affected: 0.10.8 to 0.10.12. The SigComp UDVM could go into an infinite loop or crash. (CAN-2005-3247) Fixed in: r15715, r15901, r15919 Bug IDs: none Versions affected: 0.10.12. If SMB transaction payload reassembly is enabled the SMB dissector could crash. This preference is disabled by default. (CAN-2005-3242) Fixed in: r15789 Bug IDs: 421 Versions affected: 0.9.7 to 0.10.12. The X11 dissector could attempt to divide by zero. (CAN-2005-3248) Fixed in: r15927 Bug IDs: none Versions affected: 0.10.1 to 0.10.12. The AgentX dissector could overflow a buffer. (CAN-2005-3243) Fixed in: r16003 Bug IDs: none Versions affected: 0.10.10 to 0.10.12. The WSP dissector could free an invalid pointer. (CAN-2005-3249) Fixed in: r16220 Bug IDs: none Versions affected: 0.10.1 to 0.10.12. iDEFENSE found a buffer overflow in the SRVLOC dissector. (CAN-2005-3184) Fixed in: r16206 Bug IDs: none Versions affected: 0.10.0 to 0.10.12. Solution : Get the newest Fedora Updates Network Security Threat Level: High Networks Security ID: Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security |
||
Cables, Connectors |
Rare Vintage Collectible Original Atari 800 Home Computer With Case - UNTESTED
$219.99
Atari Power Cube 800XL, 600XL, 65XE, 130XE USB-C Power Supply PSU
$11.25
Atari 400/800/XL/XE Computer SIO2PC - PC/Mac Disk Drive Emulator Adapter/Device
$15.25
Atari Mega STE or TT Keyboard. Used. Untested.
$300.00
A8picoCart Atari 130 / 65 XE 800 / 1200 XL XEGS multicart UnoCart clone game
$32.95
Vintage Atari 800XL Computer With Original Box
$140.00
Paper Clip Word Processor Floppy Disk -Commodore 64 / Atari 800XL / 65XE / 130XE
$19.99
Atari 410 Program Cassette Recorder Clean Tested for power/4 cassettes/Cover
$22.99
Rare Vintage Atari XF551 Floppy Disk Drive Station for 400, 800, 600, XE and XL
$300.00
Atari 400 with program recorder and manual
$199.00
|
||
No Discussions have been posted on this vulnerability. |