Ethereal Denial of Service Vulnerability Affecting Multiple Dissector Components
CVE-2006-1937

Currently unrated

Key Information:

Vendor: Ethereal Group
Status: Ethereal
Vendor: CVE Published:; 25 April 2006

🔔 Create Ethereal Group Vulnerability Alert

What is CVE-2006-1937?

Ethereal versions 0.10.x through 0.10.14 are susceptible to a series of vulnerabilities that allow remote attackers to launch denial of service attacks. Exploiting this flaw might lead to crashes triggered by null dereference through multiple vectors involving H.248, X.509if, SRVLOC, H.245, AIM, and various other packet dissectors, as well as the statistics counter. Attackers can exploit these vulnerabilities to disrupt normal operation and availability of the software.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/26018

vdb-entryx_refsource_XF

http://secunia.com/advisories/19828

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/19839

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 25, 2006
Vulnerability Reserved
Apr 20, 2006