Phase:The SPNEGO dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (crash) via an invalid ASN.1 value.
ReferencesCONFIRM:http://www.ethereal.com/appnotes/enpa-sa-00010.html | CONECTIVA:CLA-2003:662 | URL:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000662 | REDHAT:RHSA-2003:077 | URL:http://www.redhat.com/support/errata/RHSA-2003-077.htm
Votes:Assigned (Friday, June 13, 2003)
Comments:None (candidate not yet proposed)
F7: