{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[],"affected_systems_content":"<p>Ethereal versions 0.8.10 \u00e0 0.10.8  incluse.</p>","content":"## Description\n\nEthereal est un renifleur r\u00e9seau. Il permet l'analyse de donn\u00e9es depuis\nle r\u00e9seau ou \u00e0 partir d'un fichier.  \nPlusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Ethereal permettant \u00e0\nun utilisateur mal intentionn\u00e9 de r\u00e9aliser un d\u00e9ni de service ou\nd'ex\u00e9cuter du code arbitraire \u00e0 distance sur la plate-forme ex\u00e9cutant\nune version non corrig\u00e9e d'Ethereal.\n\n## Solution\n\nMettre \u00e0 jour Ethereal avec la version 0.10.9 corrigeant ces\nvuln\u00e9rabilit\u00e9s (cf. section Documentation).\n","cves":[],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2005:037 du 15 f\u00e9vrier    2005 :","url":"http://rhn.redhat.com/errata/RHSA-2005-037.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Debian DSA-653 du 21 janvier 2005 :","url":"http://www.debian.org/security/2005/dsa-653"},{"title":"Mise \u00e0 jour de s\u00e9curit\u00e9 du paquetage NetBSD ethereal :","url":"ftp://ftp.netbsd.org/pub/NetBSD/packages/pkgsrc/net/ethereal/README.html"},{"title":"Bulletin de s\u00e9curit\u00e9 ENPA-SA-00017 de Ethereal :","url":"http://www.ethereal.com/appnotes/enpa-sa-00017.html"},{"title":"Bulletin de s\u00e9curit\u00e9 FreeBSD pour ethereal, ethereal-lite,    tethereal et tethereal-lite du 08 f\u00e9vrier 2005 :","url":"http://www.vuxml.org/freebsd/"},{"title":"Bulletin de s\u00e9curit\u00e9 Mandrake MDKSA-2005:013 du 24 janvier    2005 :","url":"http://www.mandrakesoft.com/security/advisories?name=MDKSA-2005:013"},{"title":"Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200501-27 du 20 janvier    2005 :","url":"http://www.gentoo.org/security/en/glsa/glsa-200501-27.xml"},{"title":"Bulletin de s\u00e9curit\u00e9 SGI 20050202-01-U du 09 f\u00e9vrier 2005 :","url":"ftp://patches.sgi.com/support/free/security/advisories/20050202-01-U.asc"},{"title":"Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2005:011 du 02 f\u00e9vrier    2005 :","url":"http://rhn.redhat.com/errata/RHSA-2005-011.html"},{"title":"Site Internet de Ethereal :","url":"http://www.ethereal.com"}],"reference":"CERTA-2005-AVI-022","revisions":[{"description":"version initiale.","revision_date":"2005-01-24T00:00:00.000000"},{"description":"ajout des r\u00e9f\u00e9rences aux bulletins de s\u00e9curit\u00e9 Mandrake et NetBSD.","revision_date":"2005-01-25T00:00:00.000000"},{"description":"ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 RedHat RHSA-2005:011.","revision_date":"2005-02-03T00:00:00.000000"},{"description":"ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 FreeBSD.","revision_date":"2005-02-09T00:00:00.000000"},{"description":"ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 SGI.","revision_date":"2005-02-14T00:00:00.000000"},{"description":"ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 RedHat.","revision_date":"2005-02-17T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"D\u00e9ni de service"}],"summary":null,"title":"Vuln\u00e9rabilit\u00e9 de Ethereal","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Gentoo GLSA 200501-27","url":null}]}