Ethereal RSVP Decoding Routines Denial Of Service Vulnerability

Ethereal RSVP Decoding Routines Denial Of Service Vulnerability

Ethereal is prone to a vulnerability that may allow a remote attacker to cause a denial of service condition in the software. The issue occurs due to the way Ethereal decodes Resource ReSerVation Protocol (RSVP) packets. A remote attacker may cause the software to enter an infinite loop by sending malformed RSVP packets resulting in the software hanging.

Ethereal versions up to and including 0.10.10 are reported prone to this issue.