PT-2004-1352 · Tcpdump · Tcpdump

Published

2004-04-06

Updated

2024-02-15

CVE-2004-0183

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions tcpdump versions 3.8.1 and earlier

Description The issue allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read. This has been demonstrated by the Striker ISAKMP Protocol Test Suite.

Recommendations For versions 3.8.1 and earlier, consider updating to a newer version to mitigate the risk of a denial of service attack. As a temporary workaround, consider restricting the handling of ISAKMP packets with Delete payloads to minimize the risk of exploitation.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

CVE-2004-0183

DSA-478

RHSA-2004:219

Affected Products

Tcpdump

PT-2004-1352 · Tcpdump · Tcpdump

CVE-2004-0183

Weakness Enumeration

Related Identifiers

Affected Products

References · 20