This script is Copyright (C) 2004-2014 Tenable Network Security, Inc.
The remote Red Hat host is missing one or more security updates.
Updated tcpdump packages are available to fix a denial of service
vulnerability in tcpdump.
[Updated 12 March 2003] Added packages for Red Hat Enterprise Linux ES
and Red Hat Enterprise Linux WS
Tcpdump is a command-line tool for monitoring network traffic.
The ISAKMP parser in tcpdump 3.6 through 3.7.1 allows remote attackers
to cause a denial of service (CPU consumption) via a certain malformed
ISAKMP packet to UDP port 500, which causes tcpdump to enter an
Users of tcpdump are advised to upgrade to these errata packages which
contain a patch to correct this issue.
See also :
Update the affected arpwatch, libpcap and / or tcpdump packages.
Risk factor :
Medium / CVSS Base Score : 5.0
Family: Red Hat Local Security Checks
Nessus Plugin ID: 12375 ()
CVE ID: CVE-2003-0108
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.