Info

Disclosure

Jun 08, 2005

Discovery

Unknown

Dates

Exploit

Jun 09, 2005

Solution

Unknown

Description

tcpdump contains a flaw that may allow a remote denial of service. The issue is triggered when a crafted BGP packet is parsed, causing an infinite loop, and will result in loss of availability for the service.

Classification

Location: Remote/Network Access Required
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Upgrade to version 3.9.3 or higher from CVS, as it has been reported to fix this vulnerability. In addition, Simon Nielsen has released a patch for some older versions.

Products

Tcpdump	tcpdump	3.8.3
		3.9

References

Security Tracker: 1014133
Secunia Advisory ID: 15634 15646 15650 15773 16083 16564 17029 17118
CVE ID: 2005-1267 (see also: NVD)
Vendor Specific Advisory URL: ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:10.tcpdump.asc http://frontal1.mandriva.com/security/advisories?name=MDKSA-2005:101
http://rhn.redhat.com/errata/RHSA-2005-505.html
http://support.avaya.com/elmodocs2/security/ASA-2005-137_RHSA-2005-417_RHSA-2005- ......
http://www-1.ibm.com/support/docview.wss?rs=0&uid=isg1IY77141&loc=en_US&cs=utf-8& ......
http://www.trustix.org/errata/2005/0028/
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-06/0150.html
Other Advisory URL: http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware- ......
http://www.debian.org/security/2005/dsa-854
http://www.ubuntulinux.org/support/documentation/usn/usn-141-1
Generic Exploit URL: http://www.securiteam.com/exploits/5GP012KG0S.html
Vendor URL: http://www.tcpdump.org/

Credit

Frédéric Raynal - pappysecurity-labs.org - Security Labs

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Tcpdump

tcpdump

References

Credit