Multiple vulnerabilities in Ethereal network protocol analyzer
CVE-2006-1938

Currently unrated

Key Information:

Vendor: Ethereal Group
Status: Ethereal
Vendor: CVE Published:; 25 April 2006

🔔 Create Ethereal Group Vulnerability Alert

What is CVE-2006-1938?

Ethereal, a widely used network protocol analyzer, contains multiple unspecified vulnerabilities that can be exploited by remote attackers. These vulnerabilities allow attackers to cause the application to crash through null dereference errors in the Sniffer capture and SMB PIPE dissectors. This results in a denial of service that compromises the availability of network analysis capabilities for users, highlighting the need for updates and patches to maintain security.

References

http://secunia.com/advisories/19828

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/19839

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/20210

third-party-advisoryx_refsource_SECUNIA

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 25, 2006
Vulnerability Reserved
Apr 20, 2006