CVE-2004-0057

Properties

Published:
16.02.2004
Updated:
28.10.2005
Patch available:
Severity:
Low
  • CVSS vector:
    (AV:R/AC:L/Au:NR/C:N/I:N/A:C/B:N) Approximated
    Product:
    LBL: tcpdump

    Vulnerability description

    The rawprint function in the ISAKMP decoding routines (print-isakmp.c) for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via malformed ISAKMP packets that cause invalid"len" or"loc" values to be used in a loop, a different vulnerability than CVE-2003-0989.

    References:

    The Aims Group: http://marc.theaimsgroup.com/?l=tcpdump-workers&m=107325073018070&w=2
    Red Hat: http://www.redhat.com/support/errata/RHSA-2004-007.html
    Security Focus: http://www.securityfocus.com/bid/9423
    Debian: http://www.debian.org/security/2004/dsa-425
    MISC: http://marc.theaimsgroup.com/?l=tcpdump-workers&m=107325073018070&w=2
    REDHAT: http://www.redhat.com/support/errata/RHSA-2004-008.html
    MANDRAKE: http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:008
    SGI: ftp://patches.sgi.com/support/free/security/advisories/20040103-01-U.asc
    CONFIRM: http://docs.info.apple.com/article.html?artnum=61798
    CONFIRM: http://lists.apple.com/mhonarc/security-announce/msg00046.html
    BUGTRAQ: http://marc.theaimsgroup.com/?l=bugtraq&m=107577418225627&w=2
    OVAL: http://oval.mitre.org/oval/definitions/data/oval851.html
    OVAL: http://oval.mitre.org/oval/definitions/data/oval854.html
    APPLE: http://lists.apple.com/archives/security-announce/2004/Feb/msg00000.html
    CERT-VN: http://www.kb.cert.org/vuls/id/174086
    SECUNIA: http://secunia.com/advisories/10636
    XF: http://xforce.iss.net/xforce/xfdb/14837