remote DoS in tcpdump

2004-01-1414:14:50

lists.opensuse.org

EPSS

0.278

Percentile

96.8%

JSON

Tcpdump is a well known tool for administrators to analyze network traffic. There is a bug in the tcpdump code responsible for handling ISAKMP messages. This bug allows remote attackers to destroy a current tcpdump session by tricking the tcpdump program with evil ISAKMP messages to enter an endless loop.

OSVersionArchitecturePackageVersionFilename
openSUSE8.0i386tcpdump< 3.6.2-330tcpdump-3.6.2-330.i386.rpm
openSUSE9.0x86_64tcpdump< 3.7.2-68tcpdump-3.7.2-68.x86_64.rpm
openSUSE8.2i586tcpdump< 3.7.1-341tcpdump-3.7.1-341.i586.rpm
openSUSE8.1i586tcpdump< 3.7.1-341tcpdump-3.7.1-341.i586.rpm
openSUSE9.0i586tcpdump< 3.7.2-72tcpdump-3.7.2-72.i586.rpm

OS	Version	Architecture	Package	Version	Filename
openSUSE	8.0	i386	tcpdump	< 3.6.2-330	tcpdump-3.6.2-330.i386.rpm
openSUSE	9.0	x86_64	tcpdump	< 3.7.2-68	tcpdump-3.7.2-68.x86_64.rpm
openSUSE	8.2	i586	tcpdump	< 3.7.1-341	tcpdump-3.7.1-341.i586.rpm
openSUSE	8.1	i586	tcpdump	< 3.7.1-341	tcpdump-3.7.1-341.i586.rpm
openSUSE	9.0	i586	tcpdump	< 3.7.2-72	tcpdump-3.7.2-72.i586.rpm

EPSS

0.278

Percentile

96.8%

JSON

Related for SUSE-SA:2004:002