PT-2006-2922 · Ethereal · Ethereal
Gerald Combs
·
Published
2006-04-25
·
Updated
2024-02-14
·
CVE-2006-1938
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Ethereal versions 0.8.x through 0.10.14
Description
The issue allows remote attackers to cause a denial of service, resulting in a crash due to a null dereference. This can be achieved via the Sniffer capture or the SMB PIPE dissector.
Recommendations
For versions 0.8.x through 0.10.14, update to a version that contains a fix for this issue to prevent remote attackers from causing a denial of service.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ethereal