tcpdump, Ethereal, and other sniffer packages allow remote malicious users to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ethereal group ethereal 0.8.5 |
||
ethereal group ethereal 0.8.6 |
||
lbl tcpdump 3.4 |
||
ethereal group ethereal 0.8.4 |
||
lbl tcpdump 3.5a |