| Vulnerability Name: | CVE-2006-1936 (CCN-26029) | ||||||||||||||||||||
| Assigned: | 2006-04-24 | ||||||||||||||||||||
| Published: | 2006-04-24 | ||||||||||||||||||||
| Updated: | 2017-10-11 | ||||||||||||||||||||
| Summary: | Buffer overflow in Ethereal 0.8.5 up to 0.10.14 allows remote attackers to execute arbitrary code via the telnet dissector. | ||||||||||||||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
| ||||||||||||||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
| ||||||||||||||||||||
| Vulnerability Type: | CWE-Other | ||||||||||||||||||||
| Vulnerability Consequences: | Gain Access | ||||||||||||||||||||
| References: | Source: SGI Type: UNKNOWN 20060501-01-U Source: MITRE Type: CNA CVE-2006-1936 Source: SUSE Type: UNKNOWN SUSE-SR:2006:010 Source: CCN Type: RHSA-2006-0420 ethereal security update Source: CCN Type: SA19769 Ethereal Multiple Protocol Dissector Vulnerabilities Source: SECUNIA Type: UNKNOWN 19769 Source: SECUNIA Type: UNKNOWN 19805 Source: SECUNIA Type: UNKNOWN 19828 Source: SECUNIA Type: UNKNOWN 19839 Source: SECUNIA Type: UNKNOWN 19958 Source: SECUNIA Type: UNKNOWN 19962 Source: SECUNIA Type: UNKNOWN 20117 Source: SECUNIA Type: UNKNOWN 20210 Source: CCN Type: SA20944 Avaya Products Ethereal Vulnerabilities Source: SECUNIA Type: UNKNOWN 20944 Source: CCN Type: SECTRACK ID: 1015985 Ethereal Bugs in Multipe Dissectors Lets Remote Users Execute Arbitrary Code and Remote Deny Service Source: SECTRACK Type: UNKNOWN 1015985 Source: CONFIRM Type: UNKNOWN http://support.avaya.com/elmodocs2/security/ASA-2006-128.htm Source: CCN Type: ASA-2006-128 ethereal security update (RHSA-2006-0420) Source: DEBIAN Type: UNKNOWN DSA-1049 Source: DEBIAN Type: DSA-1049 ethereal -- several vulnerabilities Source: CCN Type: Ethereal Web site Ethereal: A Network Protocol Analyzer Source: CCN Type: Ethereal Security Advisory enpa-sa-00023 Multiple problems in Ethereal versions 0.8.5 to 0.10.14 Source: CONFIRM Type: Patch http://www.ethereal.com/appnotes/enpa-sa-00023.html Source: CCN Type: GLSA-200604-17 Ethereal: Multiple vulnerabilities in protocol dissectors Source: GENTOO Type: UNKNOWN GLSA-200604-17 Source: MANDRIVA Type: UNKNOWN MDKSA-2006:077 Source: FEDORA Type: UNKNOWN FEDORA-2006-456 Source: FEDORA Type: UNKNOWN FEDORA-2006-461 Source: REDHAT Type: UNKNOWN RHSA-2006:0420 Source: BID Type: UNKNOWN 17682 Source: CCN Type: BID-17682 Ethereal Multiple Protocol Dissector Vulnerabilities In Versions Prior To 0.99.0 Source: VUPEN Type: UNKNOWN ADV-2006-1501 Source: XF Type: UNKNOWN ethereal-telnet-dissector-bo(26029) Source: XF Type: UNKNOWN ethereal-telnet-dissector-bo(26029) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:10341 Source: SUSE Type: SUSE-SR:2006:010 SUSE Security Summary Report | ||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration RedHat 1: Configuration RedHat 2: Configuration RedHat 3: Configuration RedHat 4: Configuration RedHat 5:  Denotes that component is vulnerable | ||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||
| |||||||||||||||||||||
| BACK | |||||||||||||||||||||