Vulnerability Note VU#433596
Ethereal integer underflow when parsing malformed PGM packets with NAK lists
Ethereal fails to properly parse Pragmatic General Multicast (PGM) packets containing a crafted negative acknowledgement (NAK) list.
Ethereal is a network traffic analysis package. It includes the ability to decode packets containing PGM data. There is a vulnerability in the way the PGM protocol dissector parses PGM data containing a crafted NAK list.
According to the e-matters Security Advisory:
A remote, unauthenticated attacker could cause Ethereal to crash or possibly execute arbitrary code on the vulnerable system.
2) Deselect the PGM protocol dissector from the list
(for Ethereal versions 0.10.x)
2) Disable the PGM protocol dissector from the list by unchecking its "Status" checkbox
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Ethereal||Affected||-||24 Mar 2004|
CVSS Metrics (Learn More)
Ethereal credits Stefan Esser for reporting this vulnerability.
This document was written by Damon Morda.
- CVE IDs: CAN-2004-0176
- Date Public: 22 Mar 2004
- Date First Published: 24 Mar 2004
- Date Last Updated: 25 Mar 2004
- Severity Metric: 4.04
- Document Revision: 21
If you have feedback, comments, or additional information about this vulnerability, please send us email.