CVE Vulnerabilities

CVE-2003-0093

Published: Mar 03, 2003 | Modified: Oct 10, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service (crash) via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop.

Affected Software

Name Vendor Start Version End Version
Tcpdump Lbl 3.5 3.5
Tcpdump Lbl 3.5.2 3.5.2
Tcpdump Lbl 3.4 3.4
Tcpdump Lbl 3.4a6 3.4a6
Tcpdump Lbl 3.6.2 3.6.2

References