Ethereal GroupCVEs & Vulnerabilities

105 CVEs affecting Ethereal Group products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

ethereal 1,889
CVE-2002-0821HIGH

Buffer overflows in Ethereal 0.9.4 and earlier allow remote attackers to cause a denial of service or execute arbitrary code via (1) the BGP dissector, or (2) the WCP dissector.

12 Aug 2002
7.5
CVSS
CVE-2002-0822HIGH

Ethereal 0.9.4 and earlier allows remote attackers to cause a denial of service and possibly excecute arbitrary code via the (1) SOCKS, (2) RSVP, (3) AFS, or (4) LMP dissectors, which can be caused to core dump.

12 Aug 2002
7.5
CVSS
CVE-2002-0353MEDIUM

The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a certain malformed packet, which causes Ethereal to allocate memory incorrectly, possibly due to zero-length fields.

25 Jun 2002
5.0
CVSS
CVE-2002-0402HIGH

Buffer overflow in X11 dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code while Ethereal is parsing keysyms.

18 Jun 2002
7.5
CVSS
CVE-2002-0403MEDIUM

DNS dissector in Ethereal before 0.9.3 allows remote attackers to cause a denial of service (CPU consumption) via a malformed packet that causes Ethereal to enter an infinite loop.

18 Jun 2002
5.0
CVSS
CVE-2002-0404MEDIUM

Vulnerability in GIOP dissector in Ethereal before 0.9.3 allows remote attackers to cause a denial of service (memory consumption).

18 Jun 2002
5.0
CVSS
CVE-2000-1174HIGHpoc

Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username.

9 Jan 2001
7.5
CVSS
CVE-1999-1227HIGH

Ethereal allows local users to overwrite arbitrary files via a symlink attack on the packet capture file.

30 Jul 1999
7.2
CVSS
CVE-2000-0333MEDIUMpoc

tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet.

31 May 1999
5.0
CVSS
← PrevPage 3 / 3Next →