Show filters
109 Total Results
Displaying 91-100 of 109
Sort by:
Attacker Value
Unknown

CVE-2003-0430

Disclosure Date: July 24, 2003 (last updated February 22, 2025)
The SPNEGO dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (crash) via an invalid ASN.1 value.
0
Attacker Value
Unknown

CVE-2003-0431

Disclosure Date: July 24, 2003 (last updated February 22, 2025)
The tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not properly handle a zero-length buffer size, with unknown consequences.
0
Attacker Value
Unknown

CVE-2003-0357

Disclosure Date: June 09, 2003 (last updated February 22, 2025)
Multiple integer overflow vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) Mount and (2) PPP dissectors.
0
Attacker Value
Unknown

CVE-2003-0356

Disclosure Date: June 09, 2003 (last updated February 22, 2025)
Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) AIM, (2) GIOP Gryphon, (3) OSPF, (4) PPTP, (5) Quake, (6) Quake2, (7) Quake3, (8) Rsync, (9) SMB, (10) SMPP, and (11) TSP dissectors, which do not properly use the tvb_get_nstringz and tvb_get_nstringz0 functions.
Attacker Value
Unknown

CVE-2003-0159

Disclosure Date: April 02, 2003 (last updated February 22, 2025)
Heap-based buffer overflow in the NTLMSSP code for Ethereal 0.9.9 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code.
0
Attacker Value
Unknown

CVE-2003-0081

Disclosure Date: March 18, 2003 (last updated February 22, 2025)
Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9.9 allows remote attackers to execute arbitrary code via SOCKS packets containing format string specifiers.
0
Attacker Value
Unknown

CVE-2002-1356

Disclosure Date: December 23, 2002 (last updated February 22, 2025)
Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possibly related to a missing field for EndVerifyAck messages.
0
Attacker Value
Unknown

CVE-2002-1355

Disclosure Date: December 23, 2002 (last updated February 22, 2025)
Multiple integer signedness errors in the BGP dissector in Ethereal 0.9.7 and earlier allow remote attackers to cause a denial of service (infinite loop) via malformed messages.
0
Attacker Value
Unknown

CVE-2002-0834

Disclosure Date: September 24, 2002 (last updated February 22, 2025)
Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets.
0
Attacker Value
Unknown

CVE-2002-0822

Disclosure Date: August 12, 2002 (last updated February 22, 2025)
Ethereal 0.9.4 and earlier allows remote attackers to cause a denial of service and possibly excecute arbitrary code via the (1) SOCKS, (2) RSVP, (3) AFS, or (4) LMP dissectors, which can be caused to core dump.
0