Ethereal releases security update

Ethereal issues a patch to address flaws that could allow remote denial of service attacks, buffer overflows, or other attacks.

Dawn Kawamoto
Dawn Kawamoto Former Staff writer, CNET News
Dawn Kawamoto covered enterprise security and financial news relating to technology for CNET News.
Ethereal has issued a patch to fix a security vulnerability in its versions 0.7.7 to 0.10.12. Ethereal develops technology to sniff packets traveling through a network, which could be subject to a remote denial of service attack, buffer overflow and other vulnerabilities, according to security researchers.

A malicious attacker can probe the network and once the Ethereal software is activated, the attacker could then gain access to the client and system. An exploit to take advantage of the flaws is currently available, according to Symantec. The vendor, however, recommends users upgrade to its 0.10.13 version.