• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Ethereal OSI Dissector Buffer Overflow Vulnerability

Solution:
SCO have released an advisory (CSSA-2003-030.0) and fixes to address this issue. Affected users are advised to install the appropriate fix as soon as possible. Further information regarding the application of these fixes can be found in the referenced advisory. Fixes are linked below.

Conectiva has released a security advisory (CLSA-2003:719) and fixes to address this issue. Users are advised to upgrade as soon as possible.

Red Hat has released a security advisory (RHSA-2003:077-13) containing fixes which address this and other issues with ethereal. See referenced advisory for further details on obtaining and applying fixes.

Conectiva has released a security advisory (CLA-2003:662) and fixes to address this issue. Users are advised to upgrade as soon as possible.

Mandrake has released a security advisory (MDKSA-2003:070) containing fixes to address this issue. Users are advised to upgrade as soon as possible.

Ethereal 0.9.13 is not vulnerable to this issue. Affected users are advised to upgrade to the newest version of Ethereal.

Red Hat has released upgraded RPMs which correct this vulnerability. Please see advisory RHSA-2003:203-01 (references section) for download links.

Updates are available for Yellow Dog Linux. These updates can be applied manually or by issuing the following command:

yum update ethereal


Ethereal Group Ethereal 0.9

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz

Ethereal Group Ethereal 0.9.1

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz

Ethereal Group Ethereal 0.9.10

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz

Ethereal Group Ethereal 0.9.11

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz

Ethereal Group Ethereal 0.9.12

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz

Ethereal Group Ethereal 0.9.2

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz

Ethereal Group Ethereal 0.9.3

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz

Ethereal Group Ethereal 0.9.4

• Debian ethereal-common_0.9.4-1woody5_alpha.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-commo n_0.9.4-1woody5_alpha.deb


• Debian ethereal-common_0.9.4-1woody5_arm.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-commo n_0.9.4-1woody5_arm.deb


• Debian ethereal-common_0.9.4-1woody5_hppa.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-commo n_0.9.4-1woody5_hppa.deb


• Debian ethereal-common_0.9.4-1woody5_i386.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-commo n_0.9.4-1woody5_i386.deb


• Debian ethereal-common_0.9.4-1woody5_ia64.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-commo n_0.9.4-1woody5_ia64.deb


• Debian ethereal-common_0.9.4-1woody5_m68k.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-commo n_0.9.4-1woody5_m68k.deb


• Debian ethereal-common_0.9.4-1woody5_mips.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-commo n_0.9.4-1woody5_mips.deb


• Debian ethereal-common_0.9.4-1woody5_mipsel.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-commo n_0.9.4-1woody5_mipsel.deb


• Debian ethereal-common_0.9.4-1woody5_powerpc.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-commo n_0.9.4-1woody5_powerpc.deb


• Debian ethereal-common_0.9.4-1woody5_s390.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-commo n_0.9.4-1woody5_s390.deb


• Debian ethereal-common_0.9.4-1woody5_sparc.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-commo n_0.9.4-1woody5_sparc.deb


• Debian ethereal-dev_0.9.4-1woody5_alpha.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0 .9.4-1woody5_alpha.deb


• Debian ethereal-dev_0.9.4-1woody5_arm.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0 .9.4-1woody5_arm.deb


• Debian ethereal-dev_0.9.4-1woody5_hppa.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0 .9.4-1woody5_hppa.deb


• Debian ethereal-dev_0.9.4-1woody5_i386.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0 .9.4-1woody5_i386.deb


• Debian ethereal-dev_0.9.4-1woody5_ia64.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0 .9.4-1woody5_ia64.deb


• Debian ethereal-dev_0.9.4-1woody5_m68k.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0 .9.4-1woody5_m68k.deb


• Debian ethereal-dev_0.9.4-1woody5_mips.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0 .9.4-1woody5_mips.deb


• Debian ethereal-dev_0.9.4-1woody5_mipsel.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0 .9.4-1woody5_mipsel.deb


• Debian ethereal-dev_0.9.4-1woody5_powerpc.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0 .9.4-1woody5_powerpc.deb


• Debian ethereal-dev_0.9.4-1woody5_s390.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0 .9.4-1woody5_s390.deb


• Debian ethereal-dev_0.9.4-1woody5_sparc.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0 .9.4-1woody5_sparc.deb


• Debian ethereal_0.9.4-1woody5_alpha.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.9.4 -1woody5_alpha.deb


• Debian ethereal_0.9.4-1woody5_arm.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.9.4 -1woody5_arm.deb


• Debian ethereal_0.9.4-1woody5_hppa.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.9.4 -1woody5_hppa.deb


• Debian ethereal_0.9.4-1woody5_i386.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.9.4 -1woody5_i386.deb


• Debian ethereal_0.9.4-1woody5_ia64.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.9.4 -1woody5_ia64.deb


• Debian ethereal_0.9.4-1woody5_m68k.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.9.4 -1woody5_m68k.deb


• Debian ethereal_0.9.4-1woody5_mips.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.9.4 -1woody5_mips.deb


• Debian ethereal_0.9.4-1woody5_mipsel.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.9.4 -1woody5_mipsel.deb


• Debian ethereal_0.9.4-1woody5_powerpc.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.9.4 -1woody5_powerpc.deb


• Debian ethereal_0.9.4-1woody5_s390.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.9.4 -1woody5_s390.deb


• Debian ethereal_0.9.4-1woody5_sparc.deb
  http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.9.4 -1woody5_sparc.deb


• Debian tethereal_0.9.4-1woody5_alpha.deb
  http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.9. 4-1woody5_alpha.deb


• Debian tethereal_0.9.4-1woody5_arm.deb
  http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.9. 4-1woody5_arm.deb


• Debian tethereal_0.9.4-1woody5_hppa.deb
  http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.9. 4-1woody5_hppa.deb


• Debian tethereal_0.9.4-1woody5_i386.deb
  http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.9. 4-1woody5_i386.deb


• Debian tethereal_0.9.4-1woody5_ia64.deb
  http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.9. 4-1woody5_ia64.deb


• Debian tethereal_0.9.4-1woody5_m68k.deb
  http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.9. 4-1woody5_m68k.deb


• Debian tethereal_0.9.4-1woody5_mips.deb
  http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.9. 4-1woody5_mips.deb


• Debian tethereal_0.9.4-1woody5_mipsel.deb
  http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.9. 4-1woody5_mipsel.deb


• Debian tethereal_0.9.4-1woody5_powerpc.deb
  http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.9. 4-1woody5_powerpc.deb


• Debian tethereal_0.9.4-1woody5_s390.deb
  http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.9. 4-1woody5_s390.deb


• Debian tethereal_0.9.4-1woody5_sparc.deb
  http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.9. 4-1woody5_sparc.deb


• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz

Ethereal Group Ethereal 0.9.5

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz

Ethereal Group Ethereal 0.9.6

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz

Ethereal Group Ethereal 0.9.7

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz

Ethereal Group Ethereal 0.9.8

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz


• Yellow Dog ethereal-0.9.13-1.90.1a.ppc.rpm
  ftp://ftp.yellowdoglinux.com/pub/yellowdog/updates/yellowdog-3.0/ppc/e thereal-0.9.13-1.90.1a.ppc.rpm


• Yellow Dog ethereal-gnome-0.9.13-1.90.1a.ppc.rpm
  ftp://ftp.yellowdoglinux.com/pub/yellowdog/updates/yellowdog-3.0/ppc/e thereal-gnome-0.9.13-1.90.1a.ppc.rpm

Ethereal Group Ethereal 0.9.9

• Ethereal Group ethereal-0.9.13.tar.gz
  http://www.ethereal.com/distribution/ethereal-0.9.13.tar.gz


• Mandrake ethereal-0.9.13-1.1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake ethereal-0.9.13-1.1mdk.ppc.rpm
  http://www.mandrakesecure.net/en/ftp.php

SCO OpenLinux Server 3.1.1

• SCO ethereal-0.9.13-1.i386.rpm
  ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2003-030.0/R PMS/ethereal-0.9.13-1.i386.rpm

SCO OpenLinux Workstation 3.1.1

• SCO ethereal-0.9.13-1.i386.rpm
  ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2003-03 0.0/RPMS/ethereal-0.9.13-1.i386.rpm

Conectiva Linux 7.0

• Conectiva ethereal-0.9.13-1U70_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/7.0/RPMS/ethereal-0.9.13-1U70_1cl. i386.rpm


• Conectiva ethereal-0.9.13-1U70_1cl.src.rpm
  ftp://atualizacoes.conectiva.com.br/7.0/SRPMS/ethereal-0.9.13-1U70_1cl .src.rpm

Conectiva Linux 8.0

• Conectiva ethereal-0.9.13-1U80_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/ethereal-0.9.13-1U80_1cl.i3 86.rpm


• Conectiva ethereal-0.9.13-1U80_1cl.src.rpm
  ftp://atualizacoes.conectiva.com.br/8/SRPMS/ethereal-0.9.13-1U80_1cl.s rc.rpm


• Conectiva ethereal-0.9.13-27097U90_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/ethereal-0.9.13-27097U90_1c l.i386.rpm


• Conectiva ethereal-0.9.13-27097U90_1cl.src.rpm
  ftp://atualizacoes.conectiva.com.br/9/SRPMS/ethereal-0.9.13-27097U90_1 cl.src.rpm


• Conectiva ethereal-common-0.9.13-1U80_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/ethereal-common-0.9.13-1U80 _1cl.i386.rpm


• Conectiva ethereal-common-0.9.13-27097U90_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/ethereal-common-0.9.13-2709 7U90_1cl.i386.rpm


• Conectiva ethereal-gtk-0.9.13-1U80_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/ethereal-gtk-0.9.13-1U80_1c l.i386.rpm


• Conectiva ethereal-gtk-0.9.13-27097U90_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/ethereal-gtk-0.9.13-27097U9 0_1cl.i386.rpm


• Conectiva ethereal-utils-0.9.13-1U80_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/ethereal-utils-0.9.13-1U80_ 1cl.i386.rpm


• Conectiva ethereal-utils-0.9.13-27097U90_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/ethereal-utils-0.9.13-27097 U90_1cl.i386.rpm


• Conectiva tethereal-0.9.13-1U80_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/tethereal-0.9.13-1U80_1cl.i 386.rpm


• Conectiva tethereal-0.9.13-27097U90_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/tethereal-0.9.13-27097U90_1 cl.i386.rpm

Conectiva Linux 9.0

• Conectiva ethereal-0.9.13-27097U90_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/ethereal-0.9.13-27097U90_1c l.i386.rpm


• Conectiva ethereal-0.9.13-27097U90_1cl.src.rpm
  ftp://atualizacoes.conectiva.com.br/9/SRPMS/ethereal-0.9.13-27097U90_1 cl.src.rpm


• Conectiva ethereal-common-0.9.13-27097U90_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/ethereal-common-0.9.13-2709 7U90_1cl.i386.rpm


• Conectiva ethereal-gtk-0.9.13-27097U90_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/ethereal-gtk-0.9.13-27097U9 0_1cl.i386.rpm


• Conectiva ethereal-utils-0.9.13-27097U90_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/ethereal-utils-0.9.13-27097 U90_1cl.i386.rpm


• Conectiva tethereal-0.9.13-27097U90_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/tethereal-0.9.13-27097U90_1 cl.i386.rpm