CVE-2006-3630 | Vulnerability Database | Aqua Security

Multiple off-by-one errors in Wireshark (aka Ethereal) 0.9.7 to 0.99.0 have unknown impact and remote attack vectors via the (1) NCP NMAS and (2) NDPS dissectors.

Affected Software

Name	Vendor	Start Version	End Version
Wireshark	Wireshark	0.9.7 (including)	0.9.7 (including)
Wireshark	Wireshark	0.9.8 (including)	0.9.8 (including)
Wireshark	Wireshark	0.99.0 (including)	0.99.0 (including)
Red Hat Enterprise Linux 3	RedHat	wireshark-0:0.99.2-EL3.1	*
Red Hat Enterprise Linux 4	RedHat	wireshark-0:0.99.2-EL4.1	*
Wireshark	Ubuntu	devel	*
Wireshark	Ubuntu	edgy	*
Wireshark	Ubuntu	feisty	*

References

ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P
http://rhn.redhat.com/errata/RHSA-2006-0602.html
http://secunia.com/advisories/21078
http://secunia.com/advisories/21107
http://secunia.com/advisories/21121
http://secunia.com/advisories/21204
http://secunia.com/advisories/21249
http://secunia.com/advisories/21467
http://secunia.com/advisories/21488
http://secunia.com/advisories/21598
http://secunia.com/advisories/22089
http://security.gentoo.org/glsa/glsa-200607-09.xml
http://securitytracker.com/id?1016532
http://support.avaya.com/elmodocs2/security/ASA-2006-197.htm
http://www.debian.org/security/2006/dsa-1127
http://www.mandriva.com/security/advisories?name=MDKSA-2006:128
http://www.novell.com/linux/security/advisories/2006_20_sr.html
http://www.osvdb.org/27366
http://www.osvdb.org/27367
http://www.osvdb.org/27368
http://www.securityfocus.com/archive/1/440576/100/0/threaded
http://www.securityfocus.com/bid/19051
http://www.vupen.com/english/advisories/2006/2850
http://www.wireshark.org/security/wnpa-sec-2006-01.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/27827
https://issues.rpath.com/browse/RPL-512
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11350

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-3630
CWE	https://cwe.mitre.org/data/definitions/189.html