| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20060316191002.82193517E@lists.grok.org.uk> Date: Thu Mar 16 20:07:06 2006 From: str0ke at milw0rm.com (str0ke) Subject: ADVISORY # -Thu Mar 16 14:09:58 EST 2006- # Integer Overflow in Ethereal ADVISORY # -Thu Mar 16 14:09:58 EST 2006- # Integer Overflow in Ethereal ========================================= 8===D BACKGROUND ========================================= This problem has no background commentary on this vulnerability in question. ========================================= 8===D DESCRIPTION ========================================= Ethereal incorrectly parses integer data, and this can be used to execute arbitrary code. ========================================= 8===D HISTORY ========================================= 2/1/2006 8==D Vendor Notification. 28/2/2006 8==D Vendor Reply. 16/3/2006 8==D Public Disclosure. ========================================= 8===D WORKAROUND ========================================= This problem has no workarounds on the problem. ========================================= 8===D VENDOR RESPONSE ========================================= Ethereal has offered no identified information about this problem at hand. ========================================= CONTACT ========================================= str0ke lolville@...m.la 1-888-565-9428 CCE GREM SSP-CNSA GIPS CAP SSCP
Powered by blists - more mailing lists