CVE-2004-0057
CVE-2004-0057
The rawprint function in the ISAKMP decoding routines (print-isakmp.c) for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via malformed ISAKMP packets that cause invalid "len" or "loc" values to be used in a loop, a different vulnerability than CVE-2003-0989.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2004-008.0.txtftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2004.9/SCOSA-2004.9.txtftp://patches.sgi.com/support/free/security/advisories/20040103-01-U.ascftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.aschttp://lists.apple.com/archives/security-announce/2004/Feb/msg00000.htmlhttp://lwn.net/Alerts/66445/http://lwn.net/Alerts/66805/http://marc.info/?l=bugtraq&m=107577418225627&w=2http://marc.info/?l=tcpdump-workers&m=107325073018070&w=2http://secunia.com/advisories/10636http://secunia.com/advisories/10639http://secunia.com/advisories/10644