Red Hat Bugzilla – Bug 109189
CAN-2003-0925/6/7 Ethereal 0.9.13 has three exploitable security issues
Last modified: 2015-03-04 20:13:02 EST
Three newissues in Ethereal prior to 0.9.16 according to
http://www.ethereal.com/appnotes/enpa-sa-00011.html on Nov03
CVE applied for.
An improperly formatted GTP MSISDN string could cause a buffer
overflow in versions of Ethereal prior to 0.9.16.
A malformed ISAKMP or MEGACO packet could make Ethereal prior to version
The SOCKS dissector in Ethereal prior to version 0.9.16 is susceptible
to a heap overflow.
This affects: 2.1AS 2.1AW 2.1ES 2.1WS 3AS 3WS 3ES
Errata RHSA-2003:324 in progress
CAN-2003-0925, CAN-2003-0926, CAN-2003-0927 respectively
An errata has been issued which should help the problem described in this bug report.
This report is therefore being closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files, please follow the link below. You may reopen
this bug report if the solution does not work for you.