CVE-2004-0183: Medium severity tcpdump tcpdump vulnerability
Published Apr 6, 2004
·Updated
TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.
Affected Software
2 affected components
tcpdump tcpdump<=3.8.1
Lbl Tcpdump<=3.8.1
Remediation
Patch Available
Event History
Apr 6, 2004
CVE Published
via MITRE·08:00 AM
Data Sourced
via MITRE·08:00 AM
Description
Frequently Asked Questions
1
What is the severity of CVE-2004-0183?
CVE-2004-0183 has a moderate severity level due to its potential to cause a denial of service.
2
How do I fix CVE-2004-0183?
To fix CVE-2004-0183, upgrade TCPDUMP to version 3.8.2 or later.
3
What versions of TCPDUMP are affected by CVE-2004-0183?
CVE-2004-0183 affects TCPDUMP versions 3.8.1 and earlier.
4
Can CVE-2004-0183 be exploited remotely?
Yes, CVE-2004-0183 can be exploited remotely via specially crafted ISAKMP packets.
5
What are the potential impacts of CVE-2004-0183?
The primary impact of CVE-2004-0183 is a crash of the TCPDUMP application, resulting in a denial of service.