Ethereal NTLMSSP解析器堆破坏漏洞

受影响系统

Ethereal Group Ethereal 0.8.18

- RedHat Linux 7.2

- RedHat Linux 7.2 i386

- RedHat Linux 7.2 ia64

Ethereal Group Ethereal 0.9 .0

Ethereal Group Ethereal 0.9.1

- Compaq Tru64 5.0

- Debian Linux 2.2 68k

- Debian Linux 2.2 alpha

- Debian Linux 2.2 arm

- Debian Linux 2.2 IA-32

- Debian Linux 2.2 powerpc

- Debian Linux 2.2 sparc

- HP HP-UX 11.0

- IBM AIX 5.1

- Linux kernel 2.4

- Microsoft windows 2000 Professional

- Microsoft Windows 95

- Microsoft Windows 98

- Microsoft Windows 98SE

- Microsoft Windows ME

- Microsoft Windows NT Workstation 4.0

- Microsoft Windows XP

- NetBSD NetBSD 1.5

- OpenBSD OpenSSH 3.0

- SCO Unixware 7.0

- SGI IRIX 6.0

- Sun Solaris 8.0

Ethereal Group Ethereal 0.9.2

Ethereal Group Ethereal 0.9.3

+ RedHat Linux 6.2 alpha

+ RedHat Linux 6.2 i386

+ RedHat Linux 6.2 sparc

+ RedHat Linux 7.0 alpha

+ RedHat Linux 7.0 i386

+ RedHat Linux 7.0 sparc

+ RedHat Linux 7.1 alpha

+ RedHat Linux 7.1 i386

+ RedHat Linux 7.1 ia64

+ RedHat Linux 7.2 alpha

+ RedHat Linux 7.2 i386

+ RedHat Linux 7.3

+ RedHat Linux 7.3 i386

Ethereal Group Ethereal 0.9.4

+ Debian Linux 3.0 alpha

+ Debian Linux 3.0 arm

+ Debian Linux 3.0 hppa

+ Debian Linux 3.0 ia-32

+ Debian Linux 3.0 ia-64

+ Debian Linux 3.0 m68k

+ Debian Linux 3.0 mips

+ Debian Linux 3.0 mipsel

+ Debian Linux 3.0 ppc

+ Debian Linux 3.0 s/390

+ Debian Linux 3.0 sparc

Ethereal Group Ethereal 0.9.5

Ethereal Group Ethereal 0.9.6

Ethereal Group Ethereal 0.9.7

Ethereal Group Ethereal 0.9.8

+ RedHat Linux 7.2

+ RedHat Linux 7.2 i386

+ RedHat Linux 7.2 ia64

+ RedHat Linux 7.3

+ RedHat Linux 7.3 i386

+ RedHat Linux 8.0

+ RedHat Linux 8.0 i386

Ethereal Group Ethereal 0.9.9具体描述

Ethereal是网络协议分析程序， NTLMSSP解析器是评估使用NTLM协议的包的机制。

其中在处理畸形NTLMSSP包的时候存在不明漏洞，可导致破破坏。存在执行任意命令可能。

测试代码

尚无

解决方案

补丁下载：

Ethereal Group Ethereal 0.8.18:

Ethereal Group Upgrade ethereal-0.9.10.tar.gz

http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9 .0:

Ethereal Group Upgrade ethereal-0.9.10.tar.gz

http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.1:

Ethereal Group Upgrade ethereal-0.9.10.tar.gz

http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.2:

Ethereal Group Upgrade ethereal-0.9.10.tar.gz

http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.3:

Ethereal Group Upgrade ethereal-0.9.10.tar.gz

http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.4:

Ethereal Group Upgrade ethereal-0.9.10.tar.gz

http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.5:

Ethereal Group Upgrade ethereal-0.9.10.tar.gz

http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.6:

Ethereal Group Upgrade ethereal-0.9.10.tar.gz

http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.7:

Ethereal Group Upgrade ethereal-0.9.10.tar.gz

http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.8:

Ethereal Group Upgrade ethereal-0.9.10.tar.gz

http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

Ethereal Group Ethereal 0.9.9:

Ethereal Group Upgrade ethereal-0.9.10.tar.gz

http://www.ethereal.com/distribution/ethereal-0.9.10.tar.gz

相关信息

Ethereal Group

参考：http://www.securityfocus.com/advisories/5076

相关主页：http://www.ethereal.com/appnotes/enpa-sa-00008.Html

• ·网络故障诊断案例: 百货商厦网络瘫痪事件的诊断
• ·捕捉数据包进行分析程序实现
• ·TCPDUMP中文手册
• ·协议恢复实现
• ·命令行下可以解读TCP数据报内容的Sniffe
• ·Ethereal TVB_GET_NSTRIN
• ·某中学网络分析案例。
• ·Ethereal IAPP模块远程缓冲区溢出漏
• ·Ethereal：网络数据嗅探器软件
• ·Ethereal CDMA2000A11报文处