Ethereal OSI Dissector Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

Ethereal OSI Dissector Buffer Overflow Vulnerability

The OSI dissector is prone to a buffer overflow condition when handling bad IPv4 or IPv6 prefix lengths. This is likely due to insufficient bounds checking.

Successful exploitation of this vulnerability may result in the attacker gaining access to the Ethereal host via execution of attacker-supplied instructions.