CVE-2006-4805 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-4805
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-4805

Description: epan/dissectors/packet-xot.c in the XOT dissector (dissect_xot_pdu) in Wireshark (formerly Ethereal) 0.9.8 through 0.99.3 allows remote attackers to cause a denial of service (memory consumption and crash) via an encoded XOT packet that produces a zero length value when it is decoded.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/29843 SUSE http://www.novell.com/linux/security/advisories/2006_65_ethereal.html ST 1017129 SGI SAID Secunia Advisory: SA22797 Secunia Advisory: SA22672 Secunia Advisory: SA22659 Secunia Advisory: SA22692 Secunia Advisory: SA22590 Secunia Advisory: SA22841 Secunia Advisory: SA22929 Secunia Advisory: SA23096 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0726.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2006:195 DEBIAN http://www.us.debian.org/security/2006/dsa-1201 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-255.htm http://www.wireshark.org/security/wnpa-sec-2006-03.html CERT-VN 723736 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/450307/100/0/threaded BID 20762

Return to the previous page.