Ethereal allows local users to overwrite arbitrary files via a symlink attack on the packet capture file.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-07-30
Updated
2017-12-19
Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username.
Max CVSS
7.5
EPSS Score
2.00%
Published
2001-01-09
Updated
2017-10-10
Buffer overflow in X11 dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code while Ethereal is parsing keysyms.
Max CVSS
7.5
EPSS Score
2.93%
Published
2002-06-18
Updated
2016-10-18
Buffer overflows in Ethereal 0.9.4 and earlier allow remote attackers to cause a denial of service or execute arbitrary code via (1) the BGP dissector, or (2) the WCP dissector.
Max CVSS
7.5
EPSS Score
2.70%
Published
2002-08-12
Updated
2008-09-05
Ethereal 0.9.4 and earlier allows remote attackers to cause a denial of service and possibly excecute arbitrary code via the (1) SOCKS, (2) RSVP, (3) AFS, or (4) LMP dissectors, which can be caused to core dump.
Max CVSS
7.5
EPSS Score
0.69%
Published
2002-08-12
Updated
2008-09-05
Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets.
Max CVSS
7.5
EPSS Score
0.59%
Published
2002-09-24
Updated
2008-09-10
Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possibly related to a missing field for EndVerifyAck messages.
Max CVSS
7.5
EPSS Score
1.80%
Published
2002-12-23
Updated
2008-09-05
Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9.9 allows remote attackers to execute arbitrary code via SOCKS packets containing format string specifiers.
Max CVSS
7.5
EPSS Score
4.67%
Published
2003-03-18
Updated
2017-10-10
Heap-based buffer overflow in the NTLMSSP code for Ethereal 0.9.9 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code.
Max CVSS
7.5
EPSS Score
2.93%
Published
2003-04-02
Updated
2017-10-11
Multiple integer overflow vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) Mount and (2) PPP dissectors.
Max CVSS
7.5
EPSS Score
9.69%
Published
2003-06-09
Updated
2017-10-11
The OSI dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via invalid IPv4 or IPv6 prefix lengths, possibly triggering a buffer overflow.
Max CVSS
7.5
EPSS Score
2.93%
Published
2003-07-24
Updated
2017-10-11
Buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed GTP MSISDN string.
Max CVSS
7.5
EPSS Score
2.26%
Published
2003-12-01
Updated
2017-10-11
Heap-based buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the SOCKS dissector.
Max CVSS
7.5
EPSS Score
2.26%
Published
2003-12-01
Updated
2017-10-11
The Q.931 dissector in Ethereal before 0.10.0, and Tethereal, allows remote attackers to cause a denial of service (crash) via a malformed Q.931, which triggers a null dereference.
Max CVSS
7.5
EPSS Score
16.41%
Published
2004-01-05
Updated
2024-01-21
The dissect_attribute_value_pairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2 allows remote attackers to cause a denial of service (crash) via a malformed RADIUS packet that triggers a null dereference.
Max CVSS
7.5
EPSS Score
13.85%
Published
2004-05-04
Updated
2023-12-28
Buffer overflow in the X11 dissector in Ethereal 0.8.10 through 0.10.8 allows remote attackers to execute arbitrary code via a crafted packet.
Max CVSS
7.5
EPSS Score
3.58%
Published
2005-05-02
Updated
2017-10-11
Multiple buffer overflows in the dissect_a11_radius function in the CDMA A11 (3G-A11) dissector (packet-3g-a11.c) for Ethereal 0.10.9 and earlier allow remote attackers to execute arbitrary code via RADIUS authentication packets with large length values.
Max CVSS
7.5
EPSS Score
2.48%
Published
2005-03-08
Updated
2017-10-11
Buffer overflow in the Etheric dissector in Ethereal 0.10.7 through 0.10.9 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code.
Max CVSS
7.5
EPSS Score
2.42%
Published
2005-05-02
Updated
2017-10-11
Multiple buffer overflows in the (1) SIP, (2) CMIP, (3) CMP, (4) CMS, (5) CRMF, (6) ESS, (7) OCSP, (8) X.509, (9) ISIS, (10) DISTCC, (11) FCELS, (12) Q.931, (13) NCP, (14) TCAP, (15) ISUP, (16) MEGACO, (17) PKIX1Explitit, (18) PKIX_Qualified, (19) Presentation dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code.
Max CVSS
7.5
EPSS Score
6.88%
Published
2005-05-05
Updated
2017-10-11
Double free vulnerability in the ICEP dissector in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
6.35%
Published
2005-05-05
Updated
2017-10-11
Multiple format string vulnerabilities in the (1) DHCP and (2) ANSI A dissectors in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
3.72%
Published
2005-05-05
Updated
2017-10-11
Format string vulnerability in the proto_item_set_text function in Ethereal 0.9.4 through 0.10.11, as used in multiple dissectors, allows remote attackers to write to arbitrary memory locations and gain privileges via a crafted AFP packet.
Max CVSS
7.5
EPSS Score
1.39%
Published
2005-08-10
Updated
2017-10-11
Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute arbitrary code via unknown vectors in the (1) SLIMP3 and (2) AgentX dissector.
Max CVSS
7.5
EPSS Score
12.46%
Published
2005-10-27
Updated
2017-10-11
Stack-based buffer overflow in the dissect_ospf_v3_address_prefix function in the OSPF protocol dissector in Ethereal 0.10.12, and possibly other versions, allows remote attackers to execute arbitrary code via crafted packets.
Max CVSS
7.5
EPSS Score
3.06%
Published
2005-12-10
Updated
2017-10-11
Unspecified vulnerability in the GTP dissector for Ethereal 0.9.1 to 0.10.13 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors.
Max CVSS
7.8
EPSS Score
1.76%
Published
2005-12-29
Updated
2017-10-11
28 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!