CVE-2003-1029: Medium severity Lbl Tcpdump vulnerability
Published Jan 15, 2004
·Updated
The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet with invalid data to UDP port 1701, which causes l2tpavpprint to use a bad length value when calling printoctets.
Affected Software
6 affected components
Lbl Tcpdump=3.5
Lbl Tcpdump=3.5.2
Lbl Tcpdump=3.7
Lbl Tcpdump=3.4
Lbl Tcpdump=3.6.3
Lbl Tcpdump=3.6.2
Remediation
Patch Available
Event History
Jan 15, 2004
CVE Published
via MITRE·10:00 AM
Data Sourced
via MITRE·10:00 AM
Description
Frequently Asked Questions
1
What is the severity of CVE-2003-1029?
CVE-2003-1029 has a medium severity level due to its potential to cause denial of service.
2
How do I fix CVE-2003-1029?
To fix CVE-2003-1029, you should upgrade tcpdump to version 3.8.2 or later.
3
What software is affected by CVE-2003-1029?
CVE-2003-1029 affects tcpdump versions 3.4 through 3.6.3.
4
What kind of attack does CVE-2003-1029 enable?
CVE-2003-1029 enables remote attackers to execute a denial of service attack by sending malformed UDP packets to port 1701.
5
Is there a workaround for CVE-2003-1029?
A temporary workaround for CVE-2003-1029 is to restrict access to UDP port 1701 on firewalls.