cvelistv5 - cve-2006-4331

CVE-2006-4331 (GCVE-0-2006-4331)

Vulnerability from cvelistv5

Published

2006-08-24 20:00

Modified

2024-08-07 19:06

Severity ?

CWE

Summary

Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark (formerly Ethereal) 0.99.2 allow remote attackers to cause a denial of service (crash) via unspecified vectors.

References

URL

Tags

	http://www.vupen.com/english/advisories/2006/3370	vdb-entry, x_refsource_VUPEN
	http://support.avaya.com/elmodocs2/security/ASA-2006-227.htm	x_refsource_CONFIRM
	http://secunia.com/advisories/21682	third-party-advisory, x_refsource_SECUNIA
	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14587	vdb-entry, signature, x_refsource_OVAL
	http://www.securityfocus.com/bid/19690	vdb-entry, x_refsource_BID
	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10125	vdb-entry, signature, x_refsource_OVAL
	http://securitytracker.com/id?1016736	vdb-entry, x_refsource_SECTRACK
	http://www.redhat.com/support/errata/RHSA-2006-0658.html	vendor-advisory, x_refsource_REDHAT
	http://secunia.com/advisories/21649	third-party-advisory, x_refsource_SECUNIA
	http://www.mandriva.com/security/advisories?name=MDKSA-2006:152	vendor-advisory, x_refsource_MANDRIVA
	http://www.wireshark.org/security/wnpa-sec-2006-02.html	x_refsource_CONFIRM
	http://secunia.com/advisories/21619	third-party-advisory, x_refsource_SECUNIA
	http://security.gentoo.org/glsa/glsa-200608-26.xml	vendor-advisory, x_refsource_GENTOO
	https://exchange.xforce.ibmcloud.com/vulnerabilities/28553	vdb-entry, x_refsource_XF
	http://www.kb.cert.org/vuls/id/638376	third-party-advisory, x_refsource_CERT-VN
	http://secunia.com/advisories/21885	third-party-advisory, x_refsource_SECUNIA
	http://secunia.com/advisories/21597	third-party-advisory, x_refsource_SECUNIA
	http://secunia.com/advisories/22378	third-party-advisory, x_refsource_SECUNIA

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T19:06:07.624Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "ADV-2006-3370",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/3370"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-227.htm"
          },
          {
            "name": "21682",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/21682"
          },
          {
            "name": "oval:org.mitre.oval:def:14587",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14587"
          },
          {
            "name": "19690",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/19690"
          },
          {
            "name": "oval:org.mitre.oval:def:10125",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10125"
          },
          {
            "name": "1016736",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1016736"
          },
          {
            "name": "RHSA-2006:0658",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2006-0658.html"
          },
          {
            "name": "21649",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/21649"
          },
          {
            "name": "MDKSA-2006:152",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:152"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.wireshark.org/security/wnpa-sec-2006-02.html"
          },
          {
            "name": "21619",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/21619"
          },
          {
            "name": "GLSA-200608-26",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200608-26.xml"
          },
          {
            "name": "wireshark-esp-offbyone(28553)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28553"
          },
          {
            "name": "VU#638376",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/638376"
          },
          {
            "name": "21885",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/21885"
          },
          {
            "name": "21597",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/21597"
          },
          {
            "name": "22378",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22378"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-08-23T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark (formerly Ethereal) 0.99.2 allow remote attackers to cause a denial of service (crash) via unspecified vectors."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-10-10T00:57:01.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "ADV-2006-3370",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/3370"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-227.htm"
        },
        {
          "name": "21682",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/21682"
        },
        {
          "name": "oval:org.mitre.oval:def:14587",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14587"
        },
        {
          "name": "19690",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/19690"
        },
        {
          "name": "oval:org.mitre.oval:def:10125",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10125"
        },
        {
          "name": "1016736",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1016736"
        },
        {
          "name": "RHSA-2006:0658",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2006-0658.html"
        },
        {
          "name": "21649",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/21649"
        },
        {
          "name": "MDKSA-2006:152",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:152"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.wireshark.org/security/wnpa-sec-2006-02.html"
        },
        {
          "name": "21619",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/21619"
        },
        {
          "name": "GLSA-200608-26",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200608-26.xml"
        },
        {
          "name": "wireshark-esp-offbyone(28553)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28553"
        },
        {
          "name": "VU#638376",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/638376"
        },
        {
          "name": "21885",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/21885"
        },
        {
          "name": "21597",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/21597"
        },
        {
          "name": "22378",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22378"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2006-4331",
    "datePublished": "2006-08-24T20:00:00.000Z",
    "dateReserved": "2006-08-24T00:00:00.000Z",
    "dateUpdated": "2024-08-07T19:06:07.624Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTA-2006-AVI-373

Vulnerability from certfr_avis

Plusieurs vulnérabilités ont été identifiées dans Wireshark (Ethereal). Elles permettraient à une personne malveillante distante, de provoquer une perturbation du service ou d'exécuter des commandes arbitraires sur le système utilisant une version vulnérable.

Description

Ethereal est un logiciel de capture et d'analyse de trafic réseau. Le projet Ethereal a été interrompu, et son développement se poursuit maintenant sous le nom de Wireshark. Plusieurs vulnérabilités ont été identifiées dans ce dernier :

l'interpréteur de données au format protocolaire SCSI (Small Computer System Interface) n'effectuerait pas correctement sa tâche et pourrait être interrompu sous certaines conditions ;
l'interpréteur du protocole DHCP pourrait provoquer une erreur dans la bibliothèque Glib et perturber le système vulnérable, au cours de la manipulation de certaines données ;
la manipulation d'IPsec ESP entraînerait des erreurs lors du déchiffrement de certaines données ;
des données respectant le protocole Q.2931 (utilisé pour la signalisation du RNIS à large bande B-ISDN) seraient manipulées de manière non correcte par l'interpréteur SSCOP. Cette vulnérabilité pourrait entraîner un débordement de mémoire.

Ces vulnérabilités peuvent être exploitées par une personne malveillante distante : il lui faut envoyer des paquets spécialement conçus à destination d'un système vulnérable pour provoquer une perturbation du service Wireshark (Ethereal) et d'exécuter des commandes arbitraires.

Solution

Se référer au bulletin de sécurité du projet Wireshark pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Wireshark	Wireshark	Les versions Ethereal/Wireshark antérieures à 0.99.3.

References

Title

Publication Time

Tags

Bulletin de sécurité Wireshark wnpa-sec-2006-002 du 23 août 2006	None	vendor-advisory
Mise à jour Wireshark pour la version 0.99.3 :	-	other
Bulletin de sécurité Debian dsa-1171-1 du 07 septembre 2006 :	-	other
Site du projet Wireshark, succédant à Ethereal :	-	other
Bulletin de sécurité Wireshark wnpa-sec-2006-002 du 23 août 2006 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Les versions Ethereal/Wireshark ant\u00e9rieures \u00e0 0.99.3.",
      "product": {
        "name": "Wireshark",
        "vendor": {
          "name": "Wireshark",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nEthereal est un logiciel de capture et d\u0027analyse de trafic r\u00e9seau. Le\nprojet Ethereal a \u00e9t\u00e9 interrompu, et son d\u00e9veloppement se poursuit\nmaintenant sous le nom de Wireshark. Plusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9\nidentifi\u00e9es dans ce dernier :\n\n-   l\u0027interpr\u00e9teur de donn\u00e9es au format protocolaire SCSI (Small\n    Computer System Interface) n\u0027effectuerait pas correctement sa t\u00e2che\n    et pourrait \u00eatre interrompu sous certaines conditions ;\n-   l\u0027interpr\u00e9teur du protocole DHCP pourrait provoquer une erreur dans\n    la biblioth\u00e8que Glib et perturber le syst\u00e8me vuln\u00e9rable, au cours de\n    la manipulation de certaines donn\u00e9es ;\n-   la manipulation d\u0027IPsec ESP entra\u00eenerait des erreurs lors du\n    d\u00e9chiffrement de certaines donn\u00e9es ;\n-   des donn\u00e9es respectant le protocole Q.2931 (utilis\u00e9 pour la\n    signalisation du RNIS \u00e0 large bande B-ISDN) seraient manipul\u00e9es de\n    mani\u00e8re non correcte par l\u0027interpr\u00e9teur SSCOP. Cette vuln\u00e9rabilit\u00e9\n    pourrait entra\u00eener un d\u00e9bordement de m\u00e9moire.\n\nCes vuln\u00e9rabilit\u00e9s peuvent \u00eatre exploit\u00e9es par une personne malveillante\ndistante : il lui faut envoyer des paquets sp\u00e9cialement con\u00e7us \u00e0\ndestination d\u0027un syst\u00e8me vuln\u00e9rable pour provoquer une perturbation du\nservice Wireshark (Ethereal) et d\u0027ex\u00e9cuter des commandes arbitraires.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 du projet Wireshark pour l\u0027obtention\ndes correctifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2006-4332",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-4332"
    },
    {
      "name": "CVE-2006-4330",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-4330"
    },
    {
      "name": "CVE-2006-4333",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-4333"
    },
    {
      "name": "CVE-2006-4331",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-4331"
    }
  ],
  "initial_release_date": "2006-08-25T00:00:00",
  "last_revision_date": "2006-09-08T00:00:00",
  "links": [
    {
      "title": "Mise \u00e0 jour Wireshark pour la version 0.99.3 :",
      "url": "http://www.wireshark.org/docs/relnotes/wireshark-0.99.3.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian dsa-1171-1 du 07 septembre 2006    :",
      "url": "http://www.debian.org/security/2006/dsa-1171"
    },
    {
      "title": "Site du projet Wireshark, succ\u00e9dant \u00e0 Ethereal :",
      "url": "http://www.wireshark.org"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Wireshark wnpa-sec-2006-002 du 23 ao\u00fbt    2006 :",
      "url": "http://www.wireshark.org/security/wnpa-sec-2006-02.html"
    }
  ],
  "reference": "CERTA-2006-AVI-373",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2006-08-25T00:00:00.000000"
    },
    {
      "description": "ajout de la mise \u00e0 jour Debian",
      "revision_date": "2006-09-08T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans Wireshark (Ethereal).\nElles permettraient \u00e0 une personne malveillante distante, de provoquer\nune perturbation du service ou d\u0027ex\u00e9cuter des commandes arbitraires sur\nle syst\u00e8me utilisant une version vuln\u00e9rable.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Wireshark (Ethereal)",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Wireshark wnpa-sec-2006-002 du 23 ao\u00fbt 2006",
      "url": null
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2006-4331 (GCVE-0-2006-4331)

Vulnerability from cvelistv5

CERTA-2006-AVI-373

Vulnerability from certfr_avis

Description

Solution

Tags

Sightings

Nomenclature