This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing a security update.
A number of vulnerabilities were discovered in tcpdump versions prior
to 3.8.1 that, if fed a maliciously crafted packet, could be exploited
to crash tcpdump or potentially execute arbitrary code with the
privileges of the user running tcpdump. These vulnerabilities
An infinite loop and memory consumption processing L2TP packets
Infinite loops in processing ISAKMP packets (CVE-2003-0989,
A segmentation fault caused by a RADIUS attribute with a large length
The updated packages are patched to correct these problem.
Update the affected tcpdump package.
Risk factor :
High / CVSS Base Score : 7.5
Family: Mandriva Local Security Checks
Nessus Plugin ID: 14108 (mandrake_MDKSA-2004-008.nasl)
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now