CVE-2003-0432 Information

Description

Ethereal 0.9.12 and earlier does not handle certain strings properly with unknown consequences in the (1) BGP (2) WTP (3) DNS (4) 802.11 (5) ISAKMP (6) WSP (7) CLNP (8) ISIS and (9) RMI dissectors.

Reference

ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-030.0.txt http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000662 http://secunia.com/advisories/9007 http://www.debian.org/security/2003/dsa-324 http://www.ethereal.com/appnotes/enpa-sa-00010.html http://www.redhat.com/support/errata/RHSA-2003-077.html https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A106