• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Ethereal NTLMSSP Dissector Heap Corruption Vulnerability

Solution:
Red Hat has released a security advisory (RHSA-2003:077-13) containing fixes which address this and other issues with ethereal. See referenced advisory for further details on obtaining and applying fixes.

Gentoo Linux has released an advisory (200303-10). Users who have installed
net-analyzer/ethereal are advised to upgrade to ethereal-0.9.10 by issuing the
following commands:

emerge sync
emerge ethereal
emerge clean

Red Hat has released a security advisory (RHSA-2003:076-01) containing fixes which address this and other issues with ethereal. users are advised to upgrade as soon as possible.

Fixes available:


Ethereal Group Ethereal 0.8.18

• Ethereal Group ethereal-0.9.10.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9

• Ethereal Group ethereal-0.9.10.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.1

• Ethereal Group ethereal-0.9.10.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.2

• Ethereal Group ethereal-0.9.10.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.3

• Ethereal Group ethereal-0.9.10.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.4

• Conectiva ethereal-0.9.11-1U60_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/6.0/RPMS/ethereal-0.9.11-1U60_1cl. i386.rpm


• Conectiva ethereal-0.9.11-1U70_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/7.0/RPMS/ethereal-0.9.11-1U70_1cl. i386.rpm


• Conectiva ethereal-0.9.11-1U80_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/ethereal-0.9.11-1U80_1cl.i3 86.rpm


• Conectiva ethereal-common-0.9.11-1U80_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/ethereal-common-0.9.11-1U80 _1cl.i386.rpm


• Conectiva ethereal-gtk-0.9.11-1U80_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/ethereal-gtk-0.9.11-1U80_1c l.i386.rpm


• Conectiva ethereal-utils-0.9.11-1U80_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/ethereal-utils-0.9.11-1U80_ 1cl.i386.rpm


• Conectiva tethereal-0.9.11-1U80_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/tethereal-0.9.11-1U80_1cl.i 386.rpm


• Ethereal Group ethereal-0.9.10.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.5

• Ethereal Group ethereal-0.9.10.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.6

• Ethereal Group ethereal-0.9.10.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.7

• Ethereal Group ethereal-0.9.10.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.8

• Ethereal Group ethereal-0.9.10.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz


• Red Hat ethereal-0.9.11-0.90.1.i386.rpm
  ftp://updates.redhat.com/9/en/os/i386/ethereal-0.9.11-0.90.1.i386.rpm


• Red Hat ethereal-0.9.11-1.72.1.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/ethereal-0.9.11-1.72.1.i386.rp m


• Red Hat ethereal-0.9.11-1.72.1.ia64.rpm
  ftp://updates.redhat.com/7.2/en/os/ia64/ethereal-0.9.11-1.72.1.ia64.rp m


• Red Hat ethereal-0.9.11-1.73.0.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/ethereal-0.9.11-1.73.0.i386.rp m


• Red Hat ethereal-0.9.11-1.80.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/ethereal-0.9.11-1.80.0.i386.rp m


• Red Hat ethereal-gnome-0.9.11-0.90.1.i386.rpm
  ftp://updates.redhat.com/9/en/os/i386/ethereal-gnome-0.9.11-0.90.1.i38 6.rpm


• Red Hat ethereal-gnome-0.9.11-1.72.1.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/ethereal-gnome-0.9.11-1.72.1.i 386.rpm


• Red Hat ethereal-gnome-0.9.11-1.72.1.ia64.rpm
  ftp://updates.redhat.com/7.2/en/os/ia64/ethereal-gnome-0.9.11-1.72.1.i a64.rpm


• Red Hat ethereal-gnome-0.9.11-1.73.0.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/ethereal-gnome-0.9.11-1.73.0.i 386.rpm


• Red Hat ethereal-gnome-0.9.11-1.80.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/ethereal-gnome-0.9.11-1.80.0.i 386.rpm

Ethereal Group Ethereal 0.9.9

• Ethereal Group ethereal-0.9.10.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz


• Mandrake ethereal-0.9.11-1.1mdk.i586.rpm
  Mandrake Linux 9.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake ethereal-0.9.11-1.1mdk.ppc.rpm
  Mandrake Linux 9.1/PPC
  http://www.mandrakesecure.net/en/ftp.php