CVE Vulnerabilities

CVE-2000-0333

Published: May 31, 1999 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet.

Affected Software

Name Vendor Start Version End Version
Ethereal Ethereal_group 0.8.4 0.8.4
Ethereal Ethereal_group 0.8.5 0.8.5
Ethereal Ethereal_group 0.8.6 0.8.6
Tcpdump Lbl 3.4 3.4
Tcpdump Lbl 3.5a 3.5a

References