CVE-2004-0506

The SPNEGO dissector in Ethereal 0.9.8 to 0.10.3 allows remote attackers to cause a denial of service (crash) via unknown attack vectors that cause a null pointer dereference.
References
Link Resource
ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc
ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000916
http://secunia.com/advisories/11608
http://secunia.com/advisories/11776
http://secunia.com/advisories/11836
http://security.gentoo.org/glsa/glsa-200406-01.xml Vendor Advisory
http://securitytracker.com/id?1010158
http://www.ciac.org/ciac/bulletins/o-150.shtml
http://www.ethereal.com/appnotes/enpa-sa-00014.html URL Repurposed
http://www.redhat.com/support/errata/RHSA-2004-234.html Patch Vendor Advisory
http://www.securityfocus.com/bid/10347 Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16151
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9695
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A987
ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc
ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000916
http://secunia.com/advisories/11608
http://secunia.com/advisories/11776
http://secunia.com/advisories/11836
http://security.gentoo.org/glsa/glsa-200406-01.xml Vendor Advisory
http://securitytracker.com/id?1010158
http://www.ciac.org/ciac/bulletins/o-150.shtml
http://www.ethereal.com/appnotes/enpa-sa-00014.html URL Repurposed
http://www.redhat.com/support/errata/RHSA-2004-234.html Patch Vendor Advisory
http://www.securityfocus.com/bid/10347 Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16151
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9695
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A987
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ethereal_group:ethereal:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.10.3:*:*:*:*:*:*:*
cpe:2.3:a:sgi:propack:2.4:*:*:*:*:*:*:*
cpe:2.3:a:sgi:propack:3.0:*:*:*:*:*:*:*

History

20 Nov 2024, 23:48

Type Values Removed Values Added
References () ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc - () ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc -
References () ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc - () ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc -
References () http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000916 - () http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000916 -
References () http://secunia.com/advisories/11608 - () http://secunia.com/advisories/11608 -
References () http://secunia.com/advisories/11776 - () http://secunia.com/advisories/11776 -
References () http://secunia.com/advisories/11836 - () http://secunia.com/advisories/11836 -
References () http://security.gentoo.org/glsa/glsa-200406-01.xml - Vendor Advisory () http://security.gentoo.org/glsa/glsa-200406-01.xml - Vendor Advisory
References () http://securitytracker.com/id?1010158 - () http://securitytracker.com/id?1010158 -
References () http://www.ciac.org/ciac/bulletins/o-150.shtml - () http://www.ciac.org/ciac/bulletins/o-150.shtml -
References () http://www.ethereal.com/appnotes/enpa-sa-00014.html - URL Repurposed () http://www.ethereal.com/appnotes/enpa-sa-00014.html - URL Repurposed
References () http://www.redhat.com/support/errata/RHSA-2004-234.html - Patch, Vendor Advisory () http://www.redhat.com/support/errata/RHSA-2004-234.html - Patch, Vendor Advisory
References () http://www.securityfocus.com/bid/10347 - Patch, Vendor Advisory () http://www.securityfocus.com/bid/10347 - Patch, Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/16151 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/16151 -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9695 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9695 -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A987 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A987 -

14 Feb 2024, 01:17

Type Values Removed Values Added
References (CONFIRM) http://www.ethereal.com/appnotes/enpa-sa-00014.html - (CONFIRM) http://www.ethereal.com/appnotes/enpa-sa-00014.html - URL Repurposed

Information

Published : 2004-08-18 04:00

Updated : 2024-11-20 23:48


NVD link : CVE-2004-0506

Mitre link : CVE-2004-0506

CVE.ORG link : CVE-2004-0506


JSON object : View

Products Affected

ethereal_group

  • ethereal

sgi

  • propack