FreeBSD Ports: ethereal, ethereal-lite, tethereal, tethereal-lite

Summary
The remote host is missing an update to the system as announced in the referenced advisory.
Solution
Update your system with the appropriate patches or software upgrades. http://www.ethereal.com/appnotes/enpa-sa-00015.html http://secunia.com/advisories/12024 http://www.osvdb.org/7536 http://www.osvdb.org/7537 http://www.osvdb.org/7538 http://www.vuxml.org/freebsd/265c8b00-d2d0-11d8-b479-02e0185c0b53.html
Insight
The following packages are affected: ethereal ethereal-lite tethereal tethereal-lite CVE-2004-0633 The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow. CVE-2004-0634 The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service (process crash) via a handle without a policy name, which causes a null dereference. CVE-2004-0635 The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-bounds read.