Wireshark · Ethereal-dev: [Ethereal-dev] ucd/net-snmp vulnerability and Ethereal

Ethereal-dev: [Ethereal-dev] ucd/net-snmp vulnerability and Ethereal

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Joerg Mayer <jmayer@xxxxxxxxx>

Date: Wed, 13 Feb 2002 01:12:26 +0100

Hello,

I've just read this wonderful mail:

Date: Tue, 12 Feb 2002 14:38:58 -0500 (EST)
From: CERT Advisory <cert-advisory@xxxxxxxx>
To: cert-advisory@xxxxxxxx
Organization: CERT(R) Coordination Center - +1 412-268-7090
Subject: CERT Advisory CA-2002-03 Multiple Vulnerabilities in Many
	Implementationsof the Simple Network Management Protocol (SNMP)

One of the many many products affected is ucd-snmp (net-snmp) which is used
by Ethereal. In case there are statically linked packages out there, maybe
they should be relinked against version 4.2.2 or newer.

  Ciao
      Jï¿œrg

PS: I only checked that net-snmp *is* vulnerable, I haven't checked what
  the overflows can actually do.

--
Joerg Mayer                                          <jmayer@xxxxxxxxx>
I found out that "pro" means "instead of" (as in proconsul). Now I know
what proactive means.

Follow-Ups:
- Re: [Ethereal-dev] ucd/net-snmp vulnerability and Ethereal
  - From: Guy Harris

Prev by Date: [Ethereal-dev] re - mail addrs in cvs commit msgs
Next by Date: Re: [Ethereal-dev] ucd/net-snmp vulnerability and Ethereal
Previous by thread: [Ethereal-dev] re - mail addrs in cvs commit msgs
Next by thread: Re: [Ethereal-dev] ucd/net-snmp vulnerability and Ethereal
Index(es):
- Date
- Thread