Published: 02/05/2005 Updated: 19/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The isis_print function, as called by isoclns_print, in tcpdump 3.9.1 and previous versions allows remote malicious users to cause a denial of service (infinite loop) via a zero length, as demonstrated using a GRE packet.

Vulnerable Product	Search on Vulmon	Subscribe to Product
lbl tcpdump

It was discovered that certain invalid GRE, LDP, BGP, and RSVP packets triggered infinite loops in tcpdump, which caused tcpdump to stop working This could be abused by a remote attacker to bypass tcpdump analysis of network traffic ...

Synopsis tcpdump security update Type/Severity Security Advisory: Moderate Topic Updated tcpdump packages that fix several security issues are now availableThis update has been rated as having moderate security impact by the RedHat Security Response TeamThis updated package also adds support for output fi ...

Synopsis tcpdump security update Type/Severity Security Advisory: Moderate Topic Updated tcpdump packages that fix several security issues are now availableThis update has been rated as having moderate security impact by the RedHat Security Response TeamThese updated packages also add support for output f ...

/*[ tcpdump[38x/391]: (ISIS) isis_print() infinite loop DOS ]* * * * by: vade79/v9 v9@fakehalous (fakehalo/realhalo) * * * * compile: * * gcc x ...

NVD-CWE-Other http://www.securityfocus.com/archive/1/396932 http://www.redhat.com/support/errata/RHSA-2005-417.html http://www.redhat.com/support/errata/RHSA-2005-421.html ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.60/SCOSA-2005.60.txt http://secunia.com/advisories/18146 http://secunia.com/advisories/15125 http://www.securityfocus.com/bid/13392 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10159 http://www.securityfocus.com/archive/1/430292/100/0/threaded https://usn.ubuntu.com/119-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/959/

CVE-2005-1278

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect