CVE-2006-4574 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-4574
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-4574

Description: Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ethereal) 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that tragger an assertion error related to unexpected length values.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/29844 SUSE http://www.novell.com/linux/security/advisories/2006_65_ethereal.html ST 1017129 SGI SAID Secunia Advisory: SA22672 Secunia Advisory: SA22659 Secunia Advisory: SA22692 Secunia Advisory: SA22590 Secunia Advisory: SA22797 Secunia Advisory: SA22841 Secunia Advisory: SA22929 Secunia Advisory: SA23096 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0726.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2006:195 DEBIAN http://www.us.debian.org/security/2006/dsa-1201 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-255.htm http://www.wireshark.org/security/wnpa-sec-2006-03.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/450307/100/0/threaded BID 20762

Return to the previous page.