CVE-2004-0184

Name of the Vulnerable Software and Affected Versions tcpdump versions 3.8.1 and earlier

Description The issue is caused by an integer underflow in the isakmp id print function for TCPDUMP, allowing remote attackers to cause a denial of service (crash) via an ISAKMP packet with an Identification payload. The payload's length becomes less than 8 during byte order conversion, resulting in an out-of-bounds read. This has been demonstrated using the Striker ISAKMP Protocol Test Suite.

Recommendations For versions 3.8.1 and earlier, update to a version later than 3.8.1 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.