CVE-2004-0183
EPSS 30.2%tcpdump - denial of service
發布日:2004/5/4修改日:2026/4/28
描述
TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.
受影響套件(2)
- Debian/tcpdumpfrom 0, < 3.7.2-4
- Debian/tcpdumpfrom 0, < 3.6.2-2.8