The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.
cpe:2.3:a:lbl:tcpdump:*:*:*:*:*:*:*:* versions up to 3.8.1 (inclusive)
|19180||FreeBSD : tcpdump ISAKMP payload handling remote denial-of-service (f8551668-de09-4d7b-9720-f1360929df07)||Nessus||FreeBSD Local Security Checks|
|18783||Slackware 8.1 / 9.0 / 9.1 / current : tcpdump denial of service (SSA:2004-108-01)||Nessus||Slackware Local Security Checks|
|15315||Debian DSA-478-1 : tcpdump - denial of service||Nessus||Debian Local Security Checks|
|14676||Mac OS X Multiple Vulnerabilities (Security Update 2004-09-07)||Nessus||MacOS X Local Security Checks|
|14129||Mandrake Linux Security Advisory : tcpdump (MDKSA-2004:030)||Nessus||Mandriva Local Security Checks|
|12498||RHEL 2.1 / 3 : tcpdump (RHSA-2004:219)||Nessus||Red Hat Local Security Checks|