Oval Definition:oval:org.mitre.oval:def:976
Revision Date:2004-07-12Version:3
Title:tcpdump Identification Payload in ISAKMP Packets Vulnerability
Description:Integer underflow in the isakmp_id_print for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with an Identification payload with a length that becomes less than 8 during byte order conversion, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0184
Platform(s):Red Hat Enterprise Linux 3
Product(s):
Definition Synopsis
  • Software section
  • Red Hat Enterprise 3 is installed
  • AND tcpdump version is less than 3.7.2-7.E3.2
  • AND Configuration section
  • /usr/sbin/tcpdump is executable
  • /usr/sbin/tcpdump is executable
  • OR /usr/sbin/tcpdump is executable
  • OR /usr/sbin/tcpdump is executable
    • BACK