Note to everybody who doesn't realise this:

Vulnerabilities in Ethereal are not as serious as they may sound. There are many mitigating factors:

1. An attacker needs to know that you are running Ethereal in the first place
2. Most people only run Ethereal occasionally (i.e. while diagnosing network problems)
3. An attacker also needs to know where you're running ethereal and be able to route packets of the specified type to the host.
4. Unless it's a really common type of protocol, it will probably be blocked by the firewall
5. If the user has used capture filters in Ethereal which filter out the attacker's packets, they won't be vulnerable anyway.

Slarty