SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |    Help    |   

SecurityTracker
Archives


Welcome to SecurityTracker!
 
Click to Sign Up
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com
Questions?
Want to learn about SecurityTracker? We've got answers to frequently asked questions right here
Sign Up!





Category:  Application (Generic)  >  Ethereal Vendors:  Ethereal.com
Ethereal SNMP Processing Bug Lets Remote Users Crash the Network Sniffer
Date:  Feb 25 2002
Impact:  Denial of service via network
Exploit Included:  Yes  
Description:  A denial of service vulnerability has been reported in the Ethereal network sniffing software. A remote user can cause the application to crash.

SecurityFocus has reported a denial of service vulnerability and a potential buffer overflow vulnerability in the Ethereal packet sniffer.

According to the report, a remote user can created a specific malformed SNMP packet that will cause Ethereal to crash when it reads the packet. The report also indicates that this behavior may be due to a buffer overflow that may potentially be exploitable (however, that has not been confirmed).

This vulnerability can reporteldy be triggered using the Protos SNMP test "set-req-ber-l-length" in the category of "Invalid BER length (L) fields."

This information is based on a Feb 19 2002 message from Information Security <informationsecurity@federatedinv.com>.
Impact:  A remote user can cause the Ethereal sniffer to crash. A remote user may be able to execute arbitrary code on the sniffer (however, that has not been confirmed).
Solution:  No solution was available at the time of this entry.
Vendor URL:  www.ethereal.com (Links to External Site)
Cause:  Not specified
Underlying OS:  Linux (Any), UNIX (Any), Windows (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Mar 1 2002 (Current Version is Not Vulnerable) Re: Ethereal SNMP Processing Bug Lets Remote Users Crash the Network Sniffer   (Information Security <InformationSecurity@federatedinv.com>)
The current version is reported to be not vulnerable.
Apr 25 2002 (Conectiva Issues Fix) Re: Ethereal SNMP Processing Bug Lets Remote Users Crash the Network Sniffer   (secure@conectiva.com.br)
Conectiva has issued a fix.


 Source Message Contents
Date:  Mon, 25 Feb 2002 09:36:46 -0500
Subject:  Ethereal Malformed SNMP Denial of Service Vulnerability

 

SecurityFocus has reported a denial of service vulnerability and a
potential buffer overflow vulnerability in the Ethereal packet sniffer.

According to the report, "It is reported to crash when it receives
(i.e., intercepts) a specific malformed SNMP packet. This is at the
least a denial of service, but may also be an exploitable buffer
overflow issue."

This apparently occurs when using the Protos SNMP test
"set-req-ber-l-length" in the category of "Invalid BER length (L)
fields".

This information is based on a Feb 19 2002 message from Information
Security <informationsecurity@federatedinv.com

Vendor URL:  http://www.ethereal.com/


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us   |    Help

Copyright 2002, SecurityGlobal.net LLC