PT-2003-1354 · Ethereal · Ethereal
Georgi Guninski
·
Published
2003-03-18
·
Updated
2024-02-14
·
CVE-2003-0081
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Ethereal versions 0.8.7 through 0.9.9
Description
A format string issue in the SOCKS dissector of Ethereal allows remote attackers to execute arbitrary code via SOCKS packets containing format string specifiers.
Recommendations
For Ethereal versions 0.8.7 through 0.9.9, update to a version that contains a fix for this issue to prevent remote code execution.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ethereal