Ethereal contains a vulnerability in the way the Transaction Capabilities Application Part (TCAP) protocol dissector parses ASN.1 encoded Transaction IDs within TCAP packets.
Ethereal is a network traffic analysis package. It includes the ability to decode packets containing TCAP data. The TCAP protocol is designed to enable advanced network telephony services between signaling points. For instance, when dialing an 800, 888, or 900 number, TCAP is used to determine the routing numbers for these digits.
According to an IETF Draft,
A remote, unauthenticated attacker could execute arbitrary code on the vulnerable system.
Ethereal credits Stefan Esser for reporting this vulnerability.
This document was written by Damon Morda.
|Date First Published:||2004-03-25|
|Date Last Updated:||2004-03-25 21:14 UTC|