Ethereal TVB_GET_NSTRINGZ0() Memory Handling Vulnerability

info
discussion
exploit
solution
references

Ethereal TVB_GET_NSTRINGZ0() Memory Handling Vulnerability

An Ethereal routine, tvb_get_nstringz0(), has been reported prone to a memory handling vulnerability. Reportedly tvb_get_nstringz0() incorrectly handles a zero-length buffer size.

Exploitation of this issue may allow an attacker to cause Ethereal to behave in an unpredictable manner.

The precise technical details of this vulnerability are currently unknown. This BID will be updated, as further information is available.