Mandrake Linux Security Advisory : tcpdump (MDKSA-2004:030)
Medium Nessus Plugin ID 14129
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionA number of vulnerabilities were discovered in tcpdump versions prior to 3.8.1 that, if fed a maliciously crafted packet, could be exploited to crash tcpdump. These vulnerabilities include :
Remote attackers can cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read. (CVE-2004-1083)
Integer underflow in the isakmp_id_print allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with an Identification payload with a length that becomes less than 8 during byte order conversion, which causes an out-of-bounds read.
The updated packages are patched to correct these problems.
SolutionUpdate the affected tcpdump package.