CVE-2006-1937

Name of the Vulnerable Software and Affected Versions Ethereal versions 0.10.x up to 0.10.14

Description The issue affects multiple components, including H.248, X.509if, SRVLOC, H.245, AIM, and general packet dissectors, as well as the statistics counter. Remote attackers can cause a denial of service, leading to a crash due to a null dereference.

Recommendations For Ethereal versions 0.10.x up to 0.10.14, consider disabling the affected dissectors, such as H.248, X.509if, SRVLOC, H.245, AIM, and general packet dissectors, until a fix is available. Additionally, restrict access to the statistics counter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.