Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: InfoSec Handlers Diary Blog - Time to upgrade Ethereal... InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Time to upgrade Ethereal...

Published: 2006-04-25
Last Updated: 2006-04-25 16:43:55 UTC
by Pedro Bueno (Version: 1)
0 comment(s)

Yes, if you use Ethereal, it is time to upgrade. According an advisory posted by Frsirt, 28 vulnerabilities has been identified in Ethereal "which could be exploited by remote attackers to compromise a vulnerable system or cause a denial of service."
Ethereal released a new versin to fix those, on its version 0.99, which you can find
here.

Versions that were confirmed to be vulnerable are: Ethereal 0.8.5 through 0.10.14

You can find the signatures file 
here.

-------------------------------------------------------------------------------------
Handler on Duty: Pedro Bueno ( pbueno //&&// isc. sans. org)
Keywords:
0 comment(s)
Diary Archives