Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0055

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0055
Last Modified 21 Aug 2010 12:19:29
Published 17 Feb 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0055

Summary

The print_attr_string function in print-radius.c for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a RADIUS attribute with a large length value.

Vulnerable Systems

Application

  • Lbl Tcpdump 3.5.2

  • Lbl Tcpdump 3.6.2

  • Lbl Tcpdump 3.7

  • Lbl Tcpdump 3.7.1


References

CERT-VN - VU#955526

BID - 7090

REDHAT - RHSA-2004:008

MLIST - [fedora-announce-list] 20040311 Re: [SECURITY] Fedora Core 1 Update: tcpdump-3.7.2-8.fc1.1

FEDORA - FEDORA-2004-092

FEDORA - FEDORA-2004-090

DEBIAN - DSA-425

SECUNIA - 12179

SECUNIA - 11032

SECUNIA - 11022

SECUNIA - 10718

SECUNIA - 10652

SECUNIA - 10644

SECUNIA - 10639

SECUNIA - 10636

TRUSTIX - 2004-0004

APPLE - APPLE-SA-2004-02-23

SGI - 20040103-01-U

SCO - SCOSA-2004.9

CALDERA - CSSA-2004-008.0

SECTRACK - 1008735

FEDORA - FLSA:1222

MANDRAKE - MDKSA-2004:008

MLIST - [tcpdump-workers] multiple vulnerabilities in tcpdump 3.8.1

BUGTRAQ - 20040131 [FLSA-2004:1222] Updated tcpdump resolves security vulnerabilites (resend with correct paths)

CONECTIVA - CLSA-2003:832

SGI - 20040202-01-U


Last Updated: 27 May 2016 10:38:27