• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Ethereal Etheric/GPRS-LLC/IAPP/JXTA/sFlow Dissector Vulnerabilities

Multiple buffer-overflow and denial-of-service vulnerabilities affect various Ethereal protocol dissectors, including the Etheric, GPRS-LLC, IAPP, JXTA, and sFlow dissectors.

These issues may be triggered when the software is used to monitor live network traffic or when a dump is viewed. In the worst-case scenario, an attacker may be able to execute arbitrary code as the superuser. Exploiting the other vulnerabilities will cause the software to crash when an affected dissector processes live network traffic or a dump.