|
RedHat updates for tcpdump
|
|
Secunia Advisory:
|
SA8170
|
|
|
Release Date:
|
2003-02-27
|
|
Popularity:
|
6,228 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
DoS
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Red Hat Enterprise Linux AS 2.1
Red Hat Enterprise Linux WS 2.1
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description:
RedHat has issued updated tcpdump packages. These fix two vulnerabilities, which can be exploited to cause a DoS (Denial of Service) or compromise a system.
1) When tcpdump sees a UDP packet originating from a radius port, it will try to decode the packet. If the packet contains a zero ("0") at the second byte, which is the length field of a radius header, tcpdump enters a loop generating an infinate stream of "#0#0#0#0#0". This can result in a DoS if the output is written to a file, since available space on the harddisk is consumed.
2) A boundary error identified in the BGP decoding routines can be exploited to cause a DoS or possibly execute arbitrary code on the system with the privileges of the user "pcap".
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
