vendor:
Ethereal
by:
Sowhat
7.5
CVSS
HIGH
Buffer Overflow
Buffer Overflow
CWE
Product Name: Ethereal
Affected Version From: 2000.9.1
Affected Version To: 2000.10.12
Patch Exists: YES
Related CWE:
CPE:
Platforms Tested: Windows, Linux, Mac
2005
ethereal_slimp3_bof.py
This PoC will crash the Ethereal due to a buffer overflow in the SLIMP3 dissector. The vulnerability was discovered by the vendor and coded by Sowhat. It affects versions 0.9.1 to 0.10.12 of Ethereal.
Mitigation:
Update Ethereal to version 0.10.13 or higher.