VYPR
Critical severity9.8NVD Advisory· Published Jun 9, 2003· Updated Jun 16, 2026

CVE-2003-0356

CVE-2003-0356

Description

Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) AIM, (2) GIOP Gryphon, (3) OSPF, (4) PPTP, (5) Quake, (6) Quake2, (7) Quake3, (8) Rsync, (9) SMB, (10) SMPP, and (11) TSP dissectors, which do not properly use the tvb_get_nstringz and tvb_get_nstringz0 functions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:ethereal:ethereal:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ethereal:ethereal:*:*:*:*:*:*:*:*range: <0.9.12
    • (no CPE)range: <=0.9.11

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.