Remote Code Execution in Ethereal Telnet Dissector by Ethereal Network Analyzer
CVE-2006-1936

Currently unrated

Key Information:

Vendor: Ethereal Group
Status: Ethereal
Vendor: CVE Published:; 25 April 2006

🔔 Create Ethereal Group Vulnerability Alert

What is CVE-2006-1936?

A buffer overflow vulnerability exists in Ethereal Network Analyzer versions 0.8.5 through 0.10.14, specifically in the telnet dissector. This flaw enables remote attackers to execute arbitrary code by sending maliciously crafted telnet packets. By exploiting this vulnerability, an attacker gains control over the affected system, potentially leading to data compromise and unauthorized system access.

References

http://secunia.com/advisories/19828

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/19839

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/20210

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 25, 2006
Vulnerability Reserved
Apr 20, 2006