Check Point Advisories

TCPDUMP ISAKMP Payload Handling DoS (CVE-2004-0183)

Check Point Reference: CPAI-2004-131_TEST
Date Published: 26 Jan 2015
Severity: Medium
Last Updated: Monday 26 January, 2015
Source:
Protection Provided by:
Who is Vulnerable?
Vulnerability Description Tcpdump parses and displays, and optionally records packets received on a network interface matching a user provided filter. Two vulnerabilities exist in the Tcpdump ISAKMP payload handling module, which can be exploited to cause a DoS (Denial of Service) by sending packets with specially crafted payloads. Exploiting either vulnerability will result in Tcpdump reading past a buffer allocating in the heap, resulting in a memory access error, or segmentation fault. Exploiting either vulnerability will result in the termination of Tcpdump.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK