Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2004-0183
HistoryMay 04, 2004 - 4:00 a.m.

CVE-2004-0183

2004-05-0404:00:00
CWE-125
[email protected]
web.nvd.nist.gov
29
tcpdump
3.8.1
remote attack
denial of service
isakmp
cve-2004-0183

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.2 High

AI Score

Confidence

High

0.551 Medium

EPSS

Percentile

97.7%

JSON

TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI’s, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.

Affected configurations

NVD
Node
tcpdumptcpdumpRange3.8.1
CPENameOperatorVersion
tcpdump:tcpdumptcpdumple3.8.1

Related

checkpoint_advisories 2
nvd 1
cert 2
cvelist 1
debiancve 1
ubuntucve 1
nessus 6
openvas 6
osv 1
slackware 1
securityvulns 2
debian 1
freebsd 1
redhat 1
suse 2
checkpoint_advisories
checkpoint_advisories
TCPDUMP ISAKMP Payload Handling DoS (CVE-2004-0183)
2010-02-23 00:00:00
TCPDUMP ISAKMP Payload Handling DoS (CVE-2004-0183)
2015-01-26 00:00:00
nvd
nvd
CVE-2004-0183
2004-05-04 04:00:00
cert
cert
tcpdump contains buffer overflow vulnerability in ISAKMP "Delete Payload" handling
2004-08-27 00:00:00
tcpdump contains integer underflow vulnerability in ISAKMP "Identification Payload" handling
2004-08-27 00:00:00
cvelist
cvelist
CVE-2004-0183
2004-04-06 04:00:00
debiancve
debiancve
CVE-2004-0183
2004-05-04 04:00:00
ubuntucve
ubuntucve
CVE-2004-0183
2004-05-04 00:00:00
nessus
nessus
RHEL 2.1 / 3 : tcpdump (RHSA-2004:219)
2004-07-06 00:00:00
Slackware 8.1 / 9.0 / 9.1 / current : tcpdump denial of service (SSA:2004-108-01)
2005-07-13 00:00:00
FreeBSD : tcpdump ISAKMP payload handling remote denial-of-service (f8551668-de09-4d7b-9720-f1360929df07)
2005-07-13 00:00:00
openvas
openvas
FreeBSD Ports: tcpdump
2008-09-04 00:00:00
FreeBSD Ports: tcpdump
2008-09-04 00:00:00
Slackware Advisory SSA:2004-108-01 tcpdump denial of service
2012-09-11 00:00:00
osv
osv
tcpdump - denial of service
2004-04-06 00:00:00
slackware
slackware
tcpdump denial of service
2004-04-17 12:02:24
securityvulns
securityvulns
R7-0017: TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities
2004-03-31 00:00:00
SUSE Security Announcement: Live CD 9.1 (SuSE-SA:2004:011)
2004-05-07 00:00:00
debian
debian
[SECURITY] [DSA 478-1] New tcpdump packages fix denial of service
2004-04-06 22:35:19
freebsd
freebsd
tcpdump ISAKMP payload handling remote denial-of-service
2004-03-12 00:00:00
redhat
redhat
(RHSA-2004:219) tcpdump security update
2004-05-26 00:00:00
suse
suse
remote root access in Live CD 9.1
2004-05-06 20:51:52
privilege escalation, local DoS in Linux Kernel
2004-05-04 00:48:08

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.2 High

AI Score

Confidence

High

0.551 Medium

EPSS

Percentile

97.7%

JSON
Related for CVE-2004-0183
checkpoint_advisories2nvd1cert2cvelist1debiancve1ubuntucve1nessus6openvas6osv1slackware1securityvulns2debian1freebsd1redhat1suse2