CVE-2005-1267 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2005-1267
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-1267

Description: The bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the decode_prefix4 function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted BGP packet.

CVE Status: Candidate

References: TRUSTIX http://www.trustix.org/errata/2005/0028/ SAID Secunia Advisory: SA15634 Secunia Advisory: SA17118 REDHAT http://www.redhat.com/support/errata/RHSA-2005-505.html MISC FEDORA http://www.securityfocus.com/archive/1/archive/1/430292/100/0/threaded http://www.redhat.com/archives/fedora-announce-list/2005-June/msg00007.html DEBIAN http://www.debian.org/security/2005/dsa-854 BID 13906

Return to the previous page.