cvelistv5 - cve-2003-1012

CVE-2003-1012 (GCVE-0-2003-1012)

Vulnerability from cvelistv5 – Published: 2003-12-17 05:00 – Updated: 2024-08-08 02:12

Summary

The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

FKIE_CVE-2003-1012

Vulnerability from fkie_nvd - Published: 2004-01-05 05:00 - Updated: 2025-04-03 01:03

Severity ?

Summary

The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.

References

URL	Tags
cve@mitre.org	ftp://patches.sgi.com/support/free/security/advisories/20040103-01-U.asc
cve@mitre.org	ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc
cve@mitre.org	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000801
cve@mitre.org	http://secunia.com/advisories/10531
cve@mitre.org	http://secunia.com/advisories/10568
cve@mitre.org	http://secunia.com/advisories/10570
cve@mitre.org	http://www.debian.org/security/2004/dsa-407	Patch, Vendor Advisory
cve@mitre.org	http://www.ethereal.com/appnotes/enpa-sa-00012.html	Patch, Vendor Advisory, URL Repurposed
cve@mitre.org	http://www.mandriva.com/security/advisories?name=MDKSA-2004:002
cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2004-001.html	Patch, Vendor Advisory
cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2004-002.html
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10202
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A856
af854a3a-2127-422b-91ae-364da2661108	ftp://patches.sgi.com/support/free/security/advisories/20040103-01-U.asc
af854a3a-2127-422b-91ae-364da2661108	ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc
af854a3a-2127-422b-91ae-364da2661108	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000801
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/10531
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/10568
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/10570
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2004/dsa-407	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.ethereal.com/appnotes/enpa-sa-00012.html	Patch, Vendor Advisory, URL Repurposed
af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDKSA-2004:002
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2004-001.html	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2004-002.html
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10202
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A856

Impacted products

Vendor	Product	Version
ethereal_group	ethereal	0.9
ethereal_group	ethereal	0.9.1
ethereal_group	ethereal	0.9.2
ethereal_group	ethereal	0.9.3
ethereal_group	ethereal	0.9.4
ethereal_group	ethereal	0.9.5
ethereal_group	ethereal	0.9.6
ethereal_group	ethereal	0.9.7
ethereal_group	ethereal	0.9.8
ethereal_group	ethereal	0.9.9
ethereal_group	ethereal	0.9.10
ethereal_group	ethereal	0.9.11
ethereal_group	ethereal	0.9.12
ethereal_group	ethereal	0.9.13
ethereal_group	ethereal	0.9.14
ethereal_group	ethereal	0.9.15
ethereal_group	ethereal	0.9.16

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "83C48EC3-D0BA-4A5D-93B0-6931CB3587AB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CB461B6B-B731-4732-AAD0-191BE50189D9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "19961880-D38A-4785-A7C5-879A061119BE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "831705D2-C4DE-475F-B908-8859064AFB38",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "A4622585-20E2-46E9-B773-74729FF22EEB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "E86ADCB6-0940-4CB9-85F1-A7694210FB66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "042B6289-D2E2-4369-BB40-EA6EE7025D23",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "C93D7B7E-F5F9-44A2-A87B-4A16634DEDAD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "F0A48938-30B8-4403-B08A-177FFCB9054B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "C9A33AA4-CABF-4B6B-8688-8C1BD36D6649",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "67B81EFD-27C1-411C-AFF3-E5340627E3BA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "680934CF-7F9B-41E4-AA03-ECD96F477AB9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "6F1F3D3E-A6D6-4C1A-8BC6-5579C19A7A45",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "3BCF3AFF-ED4D-40F6-A2DD-04C0A6D3BD64",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "DBCCE368-64E6-4CEC-B068-9B8BA2527289",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "CF5374A4-5194-45FD-895D-B04FDC7E853C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ethereal_group:ethereal:0.9.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "4038BC6D-DE51-4F1C-A25C-CD7FC6CE8CF6",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets."
    },
    {
      "lang": "es",
      "value": "El diseccionador SMB en Ethereal 0.10.0 permite a atacantes remotos causar una denegaci\u00f3n de servicio mediante un paquete SMB malformado que dispara un fallo de segmento durante el proceso de paquetes seleccionados."
    }
  ],
  "id": "CVE-2003-1012",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2004-01-05T05:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20040103-01-U.asc"
    },
    {
      "source": "cve@mitre.org",
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000801"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/10531"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/10568"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/10570"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.debian.org/security/2004/dsa-407"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory",
        "URL Repurposed"
      ],
      "url": "http://www.ethereal.com/appnotes/enpa-sa-00012.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:002"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2004-001.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2004-002.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10202"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A856"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20040103-01-U.asc"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000801"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/10531"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/10568"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/10570"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.debian.org/security/2004/dsa-407"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory",
        "URL Repurposed"
      ],
      "url": "http://www.ethereal.com/appnotes/enpa-sa-00012.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:002"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2004-001.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2004-002.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10202"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A856"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

RHSA-2004:001

Vulnerability from csaf_redhat - Published: 2004-01-07 18:12 - Updated: 2025-11-21 17:26

Summary

Red Hat Security Advisory: : Updated Ethereal packages fix security issues

Notes

Topic

Updated Ethereal packages that fix two security vulnerabilities are now available.

Details

Ethereal is a program for monitoring network traffic. Two security issues have been found that affect Ethereal. By exploiting these issues it may be possible to make Ethereal crash by injecting an intentionally malformed packet onto the wire or by convincing someone to read a malformed packet trace file. It is not known if these issues could allow arbitrary code execution. The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-1012 to this issue. The Q.931 dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service (crash) via a malformed Q.931, which triggers a null dereference. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-1013 to this issue. Users of Ethereal should update to these erratum packages containing Ethereal version 0.10.0, which is not vulnerable to these issues.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated Ethereal packages that fix two security vulnerabilities are now\navailable.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Ethereal is a program for monitoring network traffic.\n\nTwo security issues have been found that affect Ethereal.  By exploiting\nthese issues it may be possible to make Ethereal crash by injecting an\nintentionally malformed packet onto the wire or by convincing someone to\nread a malformed packet trace file.  It is not known if these issues could\nallow arbitrary code execution.\n\nThe SMB dissector in Ethereal before 0.10.0 allows remote attackers to\ncause a denial of service via a malformed SMB packet that triggers a\nsegmentation fault during processing of Selected packets. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the name\nCAN-2003-1012 to this issue.\n\nThe Q.931 dissector in Ethereal before 0.10.0 allows remote attackers to\ncause a denial of service (crash) via a malformed Q.931, which triggers a\nnull dereference. The Common Vulnerabilities and Exposures project\n(cve.mitre.org) has assigned the name CAN-2003-1013 to this issue.\n\nUsers of Ethereal should update to these erratum packages containing\nEthereal version 0.10.0, which is not vulnerable to these issues.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2004:001",
        "url": "https://access.redhat.com/errata/RHSA-2004:001"
      },
      {
        "category": "external",
        "summary": "http://www.ethereal.com/appnotes/enpa-sa-00012.html",
        "url": "http://www.ethereal.com/appnotes/enpa-sa-00012.html"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2004/rhsa-2004_001.json"
      }
    ],
    "title": "Red Hat Security Advisory: : Updated Ethereal packages fix security issues",
    "tracking": {
      "current_release_date": "2025-11-21T17:26:49+00:00",
      "generator": {
        "date": "2025-11-21T17:26:49+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2004:001",
      "initial_release_date": "2004-01-07T18:12:00+00:00",
      "revision_history": [
        {
          "date": "2004-01-07T18:12:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2004-01-07T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:26:49+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Linux 9",
                "product": {
                  "name": "Red Hat Linux 9",
                  "product_id": "Red Hat Linux 9",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2003-1012",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617121"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Linux 9"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-1012"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617121",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617121"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-1012",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-1012"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-1012",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-1012"
        }
      ],
      "release_date": "2003-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-01-07T18:12:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nPlease note that this update is available via Red Hat Network.  To use Red\nHat Network, launch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Linux 9"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:001"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2003-1013",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617122"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Q.931 dissector in Ethereal before 0.10.0, and Tethereal, allows remote attackers to cause a denial of service (crash) via a malformed Q.931, which triggers a null dereference.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Linux 9"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-1013"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617122",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617122"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-1013",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-1013"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-1013",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-1013"
        }
      ],
      "release_date": "2003-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-01-07T18:12:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nPlease note that this update is available via Red Hat Network.  To use Red\nHat Network, launch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Linux 9"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:001"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2004:002

Vulnerability from csaf_redhat - Published: 2004-01-20 16:45 - Updated: 2025-11-21 17:26

Summary

Red Hat Security Advisory: ethereal security update

Notes

Topic

Updated Ethereal packages that fix two security vulnerabilities are now available.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated Ethereal packages that fix two security vulnerabilities are now\navailable.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Ethereal is a program for monitoring network traffic.\n\nTwo security issues have been found that affect Ethereal.  By exploiting\nthese issues it may be possible to make Ethereal crash by injecting an\nintentionally malformed packet onto the wire or by convincing someone to\nread a malformed packet trace file.  It is not known if these issues could\nallow arbitrary code execution.\n\nThe SMB dissector in Ethereal before 0.10.0 allows remote attackers to\ncause a denial of service via a malformed SMB packet that triggers a\nsegmentation fault during processing of Selected packets. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the name\nCAN-2003-1012 to this issue.\n\nThe Q.931 dissector in Ethereal before 0.10.0 allows remote attackers to\ncause a denial of service (crash) via a malformed Q.931, which triggers a\nnull dereference. The Common Vulnerabilities and Exposures project\n(cve.mitre.org) has assigned the name CAN-2003-1013 to this issue.\n\nUsers of Ethereal should update to these erratum packages containing\nEthereal version 0.10.0, which is not vulnerable to these issues.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2004:002",
        "url": "https://access.redhat.com/errata/RHSA-2004:002"
      },
      {
        "category": "external",
        "summary": "112224",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=112224"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#low",
        "url": "https://access.redhat.com/security/updates/classification/#low"
      },
      {
        "category": "external",
        "summary": "http://www.ethereal.com/appnotes/enpa-sa-00012.html",
        "url": "http://www.ethereal.com/appnotes/enpa-sa-00012.html"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2004/rhsa-2004_002.json"
      }
    ],
    "title": "Red Hat Security Advisory: ethereal security update",
    "tracking": {
      "current_release_date": "2025-11-21T17:26:49+00:00",
      "generator": {
        "date": "2025-11-21T17:26:49+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2004:002",
      "initial_release_date": "2004-01-20T16:45:00+00:00",
      "revision_history": [
        {
          "date": "2004-01-20T16:45:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2004-01-05T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:26:49+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3",
                  "product_id": "3AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3",
                "product": {
                  "name": "Red Hat Desktop version 3",
                  "product_id": "3Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3",
                  "product_id": "3ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3",
                  "product_id": "3WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.ia64",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.ia64",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=ia64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.x86_64",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.x86_64",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.i386",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.i386",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=i386"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.src",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.src",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.ppc",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.ppc",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=ppc"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.s390x",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.s390x",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=s390"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.s390",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.s390",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=s390"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.src as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.src"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.src",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.src as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.src"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.src",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.src as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.src"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.src",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.src as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.src"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.src",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3WS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2003-1012",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617121"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:ethereal-0:0.10.0a-0.30E.1.i386",
          "3AS:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3AS:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3AS:ethereal-0:0.10.0a-0.30E.1.s390",
          "3AS:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3AS:ethereal-0:0.10.0a-0.30E.1.src",
          "3AS:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.i386",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.src",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3ES:ethereal-0:0.10.0a-0.30E.1.i386",
          "3ES:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3ES:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3ES:ethereal-0:0.10.0a-0.30E.1.s390",
          "3ES:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3ES:ethereal-0:0.10.0a-0.30E.1.src",
          "3ES:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3WS:ethereal-0:0.10.0a-0.30E.1.i386",
          "3WS:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3WS:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3WS:ethereal-0:0.10.0a-0.30E.1.s390",
          "3WS:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3WS:ethereal-0:0.10.0a-0.30E.1.src",
          "3WS:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-1012"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617121",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617121"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-1012",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-1012"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-1012",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-1012"
        }
      ],
      "release_date": "2003-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-01-20T16:45:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nPlease note that this update is available via Red Hat Network.  To use Red\nHat Network, launch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS:ethereal-0:0.10.0a-0.30E.1.i386",
            "3AS:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3AS:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3AS:ethereal-0:0.10.0a-0.30E.1.s390",
            "3AS:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3AS:ethereal-0:0.10.0a-0.30E.1.src",
            "3AS:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.i386",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.src",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3ES:ethereal-0:0.10.0a-0.30E.1.i386",
            "3ES:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3ES:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3ES:ethereal-0:0.10.0a-0.30E.1.s390",
            "3ES:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3ES:ethereal-0:0.10.0a-0.30E.1.src",
            "3ES:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3WS:ethereal-0:0.10.0a-0.30E.1.i386",
            "3WS:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3WS:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3WS:ethereal-0:0.10.0a-0.30E.1.s390",
            "3WS:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3WS:ethereal-0:0.10.0a-0.30E.1.src",
            "3WS:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:002"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2003-1013",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617122"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Q.931 dissector in Ethereal before 0.10.0, and Tethereal, allows remote attackers to cause a denial of service (crash) via a malformed Q.931, which triggers a null dereference.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:ethereal-0:0.10.0a-0.30E.1.i386",
          "3AS:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3AS:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3AS:ethereal-0:0.10.0a-0.30E.1.s390",
          "3AS:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3AS:ethereal-0:0.10.0a-0.30E.1.src",
          "3AS:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.i386",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.src",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3ES:ethereal-0:0.10.0a-0.30E.1.i386",
          "3ES:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3ES:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3ES:ethereal-0:0.10.0a-0.30E.1.s390",
          "3ES:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3ES:ethereal-0:0.10.0a-0.30E.1.src",
          "3ES:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3WS:ethereal-0:0.10.0a-0.30E.1.i386",
          "3WS:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3WS:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3WS:ethereal-0:0.10.0a-0.30E.1.s390",
          "3WS:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3WS:ethereal-0:0.10.0a-0.30E.1.src",
          "3WS:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-1013"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617122",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617122"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-1013",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-1013"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-1013",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-1013"
        }
      ],
      "release_date": "2003-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-01-20T16:45:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nPlease note that this update is available via Red Hat Network.  To use Red\nHat Network, launch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS:ethereal-0:0.10.0a-0.30E.1.i386",
            "3AS:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3AS:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3AS:ethereal-0:0.10.0a-0.30E.1.s390",
            "3AS:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3AS:ethereal-0:0.10.0a-0.30E.1.src",
            "3AS:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.i386",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.src",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3ES:ethereal-0:0.10.0a-0.30E.1.i386",
            "3ES:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3ES:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3ES:ethereal-0:0.10.0a-0.30E.1.s390",
            "3ES:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3ES:ethereal-0:0.10.0a-0.30E.1.src",
            "3ES:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3WS:ethereal-0:0.10.0a-0.30E.1.i386",
            "3WS:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3WS:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3WS:ethereal-0:0.10.0a-0.30E.1.s390",
            "3WS:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3WS:ethereal-0:0.10.0a-0.30E.1.src",
            "3WS:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:002"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2004_002

Vulnerability from csaf_redhat - Published: 2004-01-20 16:45 - Updated: 2024-11-21 22:54

Summary

Red Hat Security Advisory: ethereal security update

Notes

Topic

Updated Ethereal packages that fix two security vulnerabilities are now available.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated Ethereal packages that fix two security vulnerabilities are now\navailable.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Ethereal is a program for monitoring network traffic.\n\nTwo security issues have been found that affect Ethereal.  By exploiting\nthese issues it may be possible to make Ethereal crash by injecting an\nintentionally malformed packet onto the wire or by convincing someone to\nread a malformed packet trace file.  It is not known if these issues could\nallow arbitrary code execution.\n\nThe SMB dissector in Ethereal before 0.10.0 allows remote attackers to\ncause a denial of service via a malformed SMB packet that triggers a\nsegmentation fault during processing of Selected packets. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the name\nCAN-2003-1012 to this issue.\n\nThe Q.931 dissector in Ethereal before 0.10.0 allows remote attackers to\ncause a denial of service (crash) via a malformed Q.931, which triggers a\nnull dereference. The Common Vulnerabilities and Exposures project\n(cve.mitre.org) has assigned the name CAN-2003-1013 to this issue.\n\nUsers of Ethereal should update to these erratum packages containing\nEthereal version 0.10.0, which is not vulnerable to these issues.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2004:002",
        "url": "https://access.redhat.com/errata/RHSA-2004:002"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#low",
        "url": "https://access.redhat.com/security/updates/classification/#low"
      },
      {
        "category": "external",
        "summary": "http://www.ethereal.com/appnotes/enpa-sa-00012.html",
        "url": "http://www.ethereal.com/appnotes/enpa-sa-00012.html"
      },
      {
        "category": "external",
        "summary": "112224",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=112224"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2004/rhsa-2004_002.json"
      }
    ],
    "title": "Red Hat Security Advisory: ethereal security update",
    "tracking": {
      "current_release_date": "2024-11-21T22:54:53+00:00",
      "generator": {
        "date": "2024-11-21T22:54:53+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2004:002",
      "initial_release_date": "2004-01-20T16:45:00+00:00",
      "revision_history": [
        {
          "date": "2004-01-20T16:45:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2004-01-05T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T22:54:53+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3",
                  "product_id": "3AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3",
                "product": {
                  "name": "Red Hat Desktop version 3",
                  "product_id": "3Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3",
                  "product_id": "3ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3",
                  "product_id": "3WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.ia64",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.ia64",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=ia64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.x86_64",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.x86_64",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.i386",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.i386",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=i386"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.src",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.src",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.ppc",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.ppc",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=ppc"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.s390x",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.s390x",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
                "product": {
                  "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
                  "product_id": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal-gnome@0.10.0a-0.30E.1?arch=s390"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ethereal-0:0.10.0a-0.30E.1.s390",
                "product": {
                  "name": "ethereal-0:0.10.0a-0.30E.1.s390",
                  "product_id": "ethereal-0:0.10.0a-0.30E.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ethereal@0.10.0a-0.30E.1?arch=s390"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.src as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.src"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.src",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.src as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.src"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.src",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.src as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.src"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.src",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.src as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.src"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.src",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.i386"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        },
        "product_reference": "ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
        "relates_to_product_reference": "3WS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2003-1012",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617121"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:ethereal-0:0.10.0a-0.30E.1.i386",
          "3AS:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3AS:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3AS:ethereal-0:0.10.0a-0.30E.1.s390",
          "3AS:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3AS:ethereal-0:0.10.0a-0.30E.1.src",
          "3AS:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.i386",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.src",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3ES:ethereal-0:0.10.0a-0.30E.1.i386",
          "3ES:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3ES:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3ES:ethereal-0:0.10.0a-0.30E.1.s390",
          "3ES:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3ES:ethereal-0:0.10.0a-0.30E.1.src",
          "3ES:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3WS:ethereal-0:0.10.0a-0.30E.1.i386",
          "3WS:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3WS:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3WS:ethereal-0:0.10.0a-0.30E.1.s390",
          "3WS:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3WS:ethereal-0:0.10.0a-0.30E.1.src",
          "3WS:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-1012"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617121",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617121"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-1012",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-1012"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-1012",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-1012"
        }
      ],
      "release_date": "2003-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-01-20T16:45:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nPlease note that this update is available via Red Hat Network.  To use Red\nHat Network, launch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS:ethereal-0:0.10.0a-0.30E.1.i386",
            "3AS:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3AS:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3AS:ethereal-0:0.10.0a-0.30E.1.s390",
            "3AS:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3AS:ethereal-0:0.10.0a-0.30E.1.src",
            "3AS:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.i386",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.src",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3ES:ethereal-0:0.10.0a-0.30E.1.i386",
            "3ES:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3ES:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3ES:ethereal-0:0.10.0a-0.30E.1.s390",
            "3ES:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3ES:ethereal-0:0.10.0a-0.30E.1.src",
            "3ES:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3WS:ethereal-0:0.10.0a-0.30E.1.i386",
            "3WS:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3WS:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3WS:ethereal-0:0.10.0a-0.30E.1.s390",
            "3WS:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3WS:ethereal-0:0.10.0a-0.30E.1.src",
            "3WS:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:002"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2003-1013",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617122"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Q.931 dissector in Ethereal before 0.10.0, and Tethereal, allows remote attackers to cause a denial of service (crash) via a malformed Q.931, which triggers a null dereference.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:ethereal-0:0.10.0a-0.30E.1.i386",
          "3AS:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3AS:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3AS:ethereal-0:0.10.0a-0.30E.1.s390",
          "3AS:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3AS:ethereal-0:0.10.0a-0.30E.1.src",
          "3AS:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.i386",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.src",
          "3Desktop:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3ES:ethereal-0:0.10.0a-0.30E.1.i386",
          "3ES:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3ES:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3ES:ethereal-0:0.10.0a-0.30E.1.s390",
          "3ES:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3ES:ethereal-0:0.10.0a-0.30E.1.src",
          "3ES:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
          "3WS:ethereal-0:0.10.0a-0.30E.1.i386",
          "3WS:ethereal-0:0.10.0a-0.30E.1.ia64",
          "3WS:ethereal-0:0.10.0a-0.30E.1.ppc",
          "3WS:ethereal-0:0.10.0a-0.30E.1.s390",
          "3WS:ethereal-0:0.10.0a-0.30E.1.s390x",
          "3WS:ethereal-0:0.10.0a-0.30E.1.src",
          "3WS:ethereal-0:0.10.0a-0.30E.1.x86_64",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
          "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-1013"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617122",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617122"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-1013",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-1013"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-1013",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-1013"
        }
      ],
      "release_date": "2003-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-01-20T16:45:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nPlease note that this update is available via Red Hat Network.  To use Red\nHat Network, launch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS:ethereal-0:0.10.0a-0.30E.1.i386",
            "3AS:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3AS:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3AS:ethereal-0:0.10.0a-0.30E.1.s390",
            "3AS:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3AS:ethereal-0:0.10.0a-0.30E.1.src",
            "3AS:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3AS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.i386",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.src",
            "3Desktop:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3Desktop:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3ES:ethereal-0:0.10.0a-0.30E.1.i386",
            "3ES:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3ES:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3ES:ethereal-0:0.10.0a-0.30E.1.s390",
            "3ES:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3ES:ethereal-0:0.10.0a-0.30E.1.src",
            "3ES:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3ES:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64",
            "3WS:ethereal-0:0.10.0a-0.30E.1.i386",
            "3WS:ethereal-0:0.10.0a-0.30E.1.ia64",
            "3WS:ethereal-0:0.10.0a-0.30E.1.ppc",
            "3WS:ethereal-0:0.10.0a-0.30E.1.s390",
            "3WS:ethereal-0:0.10.0a-0.30E.1.s390x",
            "3WS:ethereal-0:0.10.0a-0.30E.1.src",
            "3WS:ethereal-0:0.10.0a-0.30E.1.x86_64",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.i386",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ia64",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.ppc",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.s390x",
            "3WS:ethereal-gnome-0:0.10.0a-0.30E.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:002"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2004_001

Vulnerability from csaf_redhat - Published: 2004-01-07 18:12 - Updated: 2024-11-21 22:54

Summary

Red Hat Security Advisory: : Updated Ethereal packages fix security issues

Notes

Topic

Updated Ethereal packages that fix two security vulnerabilities are now available.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated Ethereal packages that fix two security vulnerabilities are now\navailable.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Ethereal is a program for monitoring network traffic.\n\nTwo security issues have been found that affect Ethereal.  By exploiting\nthese issues it may be possible to make Ethereal crash by injecting an\nintentionally malformed packet onto the wire or by convincing someone to\nread a malformed packet trace file.  It is not known if these issues could\nallow arbitrary code execution.\n\nThe SMB dissector in Ethereal before 0.10.0 allows remote attackers to\ncause a denial of service via a malformed SMB packet that triggers a\nsegmentation fault during processing of Selected packets. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the name\nCAN-2003-1012 to this issue.\n\nThe Q.931 dissector in Ethereal before 0.10.0 allows remote attackers to\ncause a denial of service (crash) via a malformed Q.931, which triggers a\nnull dereference. The Common Vulnerabilities and Exposures project\n(cve.mitre.org) has assigned the name CAN-2003-1013 to this issue.\n\nUsers of Ethereal should update to these erratum packages containing\nEthereal version 0.10.0, which is not vulnerable to these issues.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2004:001",
        "url": "https://access.redhat.com/errata/RHSA-2004:001"
      },
      {
        "category": "external",
        "summary": "http://www.ethereal.com/appnotes/enpa-sa-00012.html",
        "url": "http://www.ethereal.com/appnotes/enpa-sa-00012.html"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2004/rhsa-2004_001.json"
      }
    ],
    "title": "Red Hat Security Advisory: : Updated Ethereal packages fix security issues",
    "tracking": {
      "current_release_date": "2024-11-21T22:54:50+00:00",
      "generator": {
        "date": "2024-11-21T22:54:50+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2004:001",
      "initial_release_date": "2004-01-07T18:12:00+00:00",
      "revision_history": [
        {
          "date": "2004-01-07T18:12:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2004-01-07T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T22:54:50+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Linux 9",
                "product": {
                  "name": "Red Hat Linux 9",
                  "product_id": "Red Hat Linux 9",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2003-1012",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617121"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Linux 9"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-1012"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617121",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617121"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-1012",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-1012"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-1012",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-1012"
        }
      ],
      "release_date": "2003-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-01-07T18:12:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nPlease note that this update is available via Red Hat Network.  To use Red\nHat Network, launch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Linux 9"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:001"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2003-1013",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617122"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Q.931 dissector in Ethereal before 0.10.0, and Tethereal, allows remote attackers to cause a denial of service (crash) via a malformed Q.931, which triggers a null dereference.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Linux 9"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-1013"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617122",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617122"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-1013",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-1013"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-1013",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-1013"
        }
      ],
      "release_date": "2003-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-01-07T18:12:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nPlease note that this update is available via Red Hat Network.  To use Red\nHat Network, launch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Linux 9"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:001"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    }
  ]
}

GSD-2003-1012

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.

Aliases

CVE-2003-1012

Aliases

CVE-2003-1012

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2003-1012",
    "description": "The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.",
    "id": "GSD-2003-1012",
    "references": [
      "https://www.debian.org/security/2004/dsa-407",
      "https://access.redhat.com/errata/RHSA-2004:002",
      "https://access.redhat.com/errata/RHSA-2004:001"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2003-1012"
      ],
      "details": "The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.",
      "id": "GSD-2003-1012",
      "modified": "2023-12-13T01:22:14.125603Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2003-1012",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://www.ethereal.com/appnotes/enpa-sa-00012.html",
            "refsource": "CONFIRM",
            "url": "http://www.ethereal.com/appnotes/enpa-sa-00012.html"
          },
          {
            "name": "20040202-01-U",
            "refsource": "SGI",
            "url": "ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc"
          },
          {
            "name": "MDKSA-2004:002",
            "refsource": "MANDRAKE",
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:002"
          },
          {
            "name": "oval:org.mitre.oval:def:10202",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10202"
          },
          {
            "name": "RHSA-2004:001",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2004-001.html"
          },
          {
            "name": "10568",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/10568"
          },
          {
            "name": "oval:org.mitre.oval:def:856",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A856"
          },
          {
            "name": "DSA-407",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2004/dsa-407"
          },
          {
            "name": "RHSA-2004:002",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2004-002.html"
          },
          {
            "name": "10531",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/10531"
          },
          {
            "name": "10570",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/10570"
          },
          {
            "name": "20040103-01-U",
            "refsource": "SGI",
            "url": "ftp://patches.sgi.com/support/free/security/advisories/20040103-01-U.asc"
          },
          {
            "name": "CLA-2004:801",
            "refsource": "CONECTIVA",
            "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000801"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.16:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.14:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.15:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.12:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.13:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ethereal_group:ethereal:0.9.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2003-1012"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.ethereal.com/appnotes/enpa-sa-00012.html",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.ethereal.com/appnotes/enpa-sa-00012.html"
            },
            {
              "name": "DSA-407",
              "refsource": "DEBIAN",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.debian.org/security/2004/dsa-407"
            },
            {
              "name": "RHSA-2004:001",
              "refsource": "REDHAT",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-001.html"
            },
            {
              "name": "RHSA-2004:002",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-002.html"
            },
            {
              "name": "20040103-01-U",
              "refsource": "SGI",
              "tags": [],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20040103-01-U.asc"
            },
            {
              "name": "CLA-2004:801",
              "refsource": "CONECTIVA",
              "tags": [],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000801"
            },
            {
              "name": "MDKSA-2004:002",
              "refsource": "MANDRAKE",
              "tags": [],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:002"
            },
            {
              "name": "20040202-01-U",
              "refsource": "SGI",
              "tags": [],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc"
            },
            {
              "name": "10531",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/10531"
            },
            {
              "name": "10568",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/10568"
            },
            {
              "name": "10570",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/10570"
            },
            {
              "name": "oval:org.mitre.oval:def:856",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A856"
            },
            {
              "name": "oval:org.mitre.oval:def:10202",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10202"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-10-11T01:29Z",
      "publishedDate": "2004-01-05T05:00Z"
    }
  }
}

GHSA-X4CX-JVHV-54WW

Vulnerability from github – Published: 2022-05-03 03:09 – Updated: 2022-05-03 03:09

Details

The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2003-1012"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2004-01-05T05:00:00Z",
    "severity": "MODERATE"
  },
  "details": "The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.",
  "id": "GHSA-x4cx-jvhv-54ww",
  "modified": "2022-05-03T03:09:51Z",
  "published": "2022-05-03T03:09:51Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-1012"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10202"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A856"
    },
    {
      "type": "WEB",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000801"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/10531"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/10568"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/10570"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2004/dsa-407"
    },
    {
      "type": "WEB",
      "url": "http://www.ethereal.com/appnotes/enpa-sa-00012.html"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:002"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2004-001.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2004-002.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2003-1012 (GCVE-0-2003-1012)

FKIE_CVE-2003-1012

RHSA-2004:001

RHSA-2004:002

RHSA-2004_002

RHSA-2004_001

GSD-2003-1012

GHSA-X4CX-JVHV-54WW

Tags

Sightings

Nomenclature