Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0184

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0184
Last Modified 21 Aug 2010 12:19:42
Published 04 May 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0184

Summary

Integer underflow in the isakmp_id_print for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with an Identification payload with a length that becomes less than 8 during byte order conversion, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.

Vulnerable Systems

Application

  • Lbl Tcpdump 3.8.1


References

CERT-VN - VU#492558

DEBIAN - DSA-478

FEDORA - FEDORA-2004-1468

XF - tcpdump-isakmp-integer-underflow(15679)

CONFIRM - http://www.tcpdump.org/tcpdump-changes.txt

BID - 10004

REDHAT - RHSA-2004:219

MISC - http://www.rapid7.com/advisories/R7-0017.html

SECTRACK - 1009593

SECUNIA - 11258

BUGTRAQ - 20040330 R7-0017: TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities

TRUSTIX - 2004-0015


Last Updated: 27 May 2016 10:38:30