|
|
Vulnerability Assessment & Network Security Forums |
|||||||||
|
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA255] DSA-255-1 tcpdump Vulnerability Assessment Details
|
[DSA255] DSA-255-1 tcpdump |
||
|
DSA-255-1 tcpdump Detailed Explanation for this Vulnerability Assessment Andrew Griffiths and iDEFENSE Labs discovered a problem in tcpdump, a powerful tool for network monitoring and data acquisition. An attacker is able to send a specially crafted network packet which causes tcpdump to enter an infinite loop. In addition to the above problem the tcpdump developers discovered a potential infinite loop when parsing malformed BGP packets. They also discovered a buffer overflow that can be exploited with certain malformed NFS packets. For the stable distribution (woody) these problems have been fixed in version 3.6.2-2.3. The old stable distribution (potato) does not seem to be affected by these problems. For the unstable distribution (sid) these problems have been fixed in version 3.7.1-1.2. We recommend that you upgrade your tcpdump packages. Solution : http://www.debian.org/security/2003/dsa-255 Network Security Threat Level: High Networks Security ID: 4890, 6974 Vulnerability Assessment Copyright: This script is (C) 2005 Michel Arboi |
||
|
Wholesale Lots |
|
||
|
No Discussions have been posted on this vulnerability. |