While catching up on email from the past week, I noticed a security issue that has fallen by the wayside in the midst of all of the 0-day exploit discussion. On Tuesday, Ethereal released a security advisory which discusses problems with 3 of its dissectors. Of particular note is the IRC dissector can go into an infinite loop. As you, our loyal readers, have probably already noted mentally, the IRC dissector is a fairly important one as we eavesdrop on botnets that primarily use irc as its command and control channel.
It is possible that one could run arbitrary code through the vulnerability with the OSPF dissector, but more likely you will just have Ethereal crash or use up all available system resources.
The new version is available at http://www.ethereal.com/download.html .
Handler on Duty
Dec 30th 2005
1 decade ago