CVE-2003-0093

EPSS 1.5%

tcpdump - infinite loop

Published: 3/3/2003Modified: 4/28/2026

Also known as:DEBIAN-CVE-2003-0093

Description

The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service (crash) via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop.

Affected packages (2)

Debian/tcpdumpfrom 0, < 3.7.1-1
Debian/tcpdumpfrom 0, < 3.6.2-2.4

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0093