CVE-2004-0183

Name of the Vulnerable Software and Affected Versions tcpdump versions 3.8.1 and earlier

Description The issue allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read. This has been demonstrated by the Striker ISAKMP Protocol Test Suite.

Recommendations For versions 3.8.1 and earlier, consider updating to a newer version to mitigate the risk of a denial of service attack. As a temporary workaround, consider restricting the handling of ISAKMP packets with Delete payloads to minimize the risk of exploitation.