Lucene search

K
cveMitreCVE-2004-0057
HistoryFeb 17, 2004 - 5:00 a.m.

CVE-2004-0057

2004-02-1705:00:00
mitre
web.nvd.nist.gov
35
isakmp
tcpdump
denial of service
nvd
cve-2004-0057

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.278

Percentile

96.8%

The rawprint function in the ISAKMP decoding routines (print-isakmp.c) for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via malformed ISAKMP packets that cause invalid “len” or “loc” values to be used in a loop, a different vulnerability than CVE-2003-0989.

Affected configurations

Nvd
Node
lbltcpdumpRange3.8.1
VendorProductVersionCPE
lbltcpdump*cpe:2.3:a:lbl:tcpdump:*:*:*:*:*:*:*:*

References

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.278

Percentile

96.8%