Name: Multiple problems in Ethereal versions 0.8.10 to 0.10.8

Docid: enpa-sa-00017

Date: January 19, 2005

Versions affected: 0.8.10 up to and including 0.10.8

Severity: High

Description:

Issues have been discovered in the following protocol dissectors:

• The COPS dissector could go into an infinite loop. Versions affected: 0.10.6 - 0.10.8
  CVE: CAN-2005-0006
  
  
• The DLSw dissector could cause an assertion. Versions affected: 0.10.6 - 0.10.8
  CVE: CAN-2005-0007
  
  
• The DNP dissector could cause memory corruption. Versions affected: 0.10.5 - 0.10.8
  CVE: CAN-2005-0008
  
  
• The Gnutella dissector could cuase an assertion. Versions affected: 0.10.6 - 0.10.8
  CVE: CAN-2005-0009
  
  
• The MMSE dissector could free statically-allocated memory. Versions affected: 0.10.4 - 0.10.8
  CVE: CAN-2005-0010
  
  
• The X11 dissector is vulnerable to a string buffer overflow. Versions affected: 0.8.10 - 0.10.8
  CVE: CAN-2005-0084
  
  

Impact:

It may be possible to make Ethereal crash or run arbitrary code by injecting a purposefully malformed packet onto the wire or by convincing someone to read a malformed packet trace file.

Resolution:

Upgrade to 0.10.9.

If you are running a version prior to 0.10.9 and you cannot upgrade, you can disable the COPS, DLSw, DNP, Gnutella, MMSE, and X11 protocol dissectors by selecting Analyze->Enabled Protocols... and deselecting them from the list. However, it is strongly recommended that you upgrade to 0.10.9.