Re: [Full-Disclosure] Ethereal(v0.10.0-0.10.2) IGAP Dissector Message Overflow Exploit
From: Joerg Mayer (jmayer_at_loplof.de)
To: Lan Guy <firstname.lastname@example.org> Date: Sun, 28 Mar 2004 16:44:31 +0200
On Sun, Mar 28, 2004 at 03:43:33PM +0200, Lan Guy wrote:
> is ethereal ver 0.10.3 released 25th March 2004 still vulnerable?
No, it isn't. Please have a look at the Ethereal 0.10.3 release notes.
They state that the bug has been fixed (plus about a dozen more). Or, if
you do not want to believe them, check the source (cvs diff).
Full-Disclosure - We believe in it.