Denial of Service Vulnerability in Ethereal from Sourceforge
CVE-2004-0506

Currently unrated

Key Information:

Vendor: Ethereal Group
Status: Ethereal; Propack
Vendor: CVE Published:; 18 August 2004

🔔 Create Ethereal Group Vulnerability Alert

What is CVE-2004-0506?

The SPNEGO dissector in Ethereal versions 0.9.8 through 0.10.3 is vulnerable to a denial of service attack. Remote attackers can exploit this vulnerability through various unknown vectors, resulting in a null pointer dereference that crashes the application. This vulnerability highlights the importance of timely software updates and robust input validation to safeguard against potential exploits.

References

http://secunia.com/advisories/11776

third-party-advisoryx_refsource_SECUNIA

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio...

vendor-advisoryx_refsource_CONECTIVA

http://www.securityfocus.com/bid/10347

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 18, 2004
Vulnerability Reserved
Jun 1, 2004