C-Note-06-008: Ethereal (revised 12/28/2005)
Three security vulnerabilities were fixed in Ethereal's recent patches for version
0.8.20 to 0.10.13, including a buffer overflow that may potentially
allow the execution of arbitrary code.
CIAC would like to thank Debian for this information. Please visit Debian's web site to download the patches:
http://www.debian.org/security/2005/dsa-920
Please visit Ethereal's web site to download patches:
http://www.ethereal.com/appnotes/enpa-sa-00022.html