CVE-2004-0183

Tcpdump < 3.8.1 - Out-of-Bounds Read

Title source: rule
STIX 2.1

Description

TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.

References (15)

Core 15
Core References
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/240790
Broken Link vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2004-219.html
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1009593
Broken Link, Patch, Vendor Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2004/dsa-478
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/11258
Broken Link vendor-advisory x_refsource_trustix
http://www.trustix.org/errata/2004/0015
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/11320
Broken Link, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15680
Broken Link x_refsource_misc
http://www.rapid7.com/advisories/R7-0017.html
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/10003
Broken Link, Issue Tracking vendor-advisory x_refsource_fedora
https://bugzilla.fedora.us/show_bug.cgi?id=1468
Release Notes x_refsource_confirm
http://www.tcpdump.org/tcpdump-changes.txt
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=108067265931525&w=2

Scores

EPSS 0.3016
EPSS Percentile 96.7%

Details

CWE
CWE-125
Status published
Products (1)
tcpdump/tcpdump < 3.8.1
Published May 04, 2004
Tracked Since Feb 18, 2026