Family: Debian Local Security Checks --> Category: infos
[DSA255] DSA-255-1 tcpdump Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Andrew Griffiths and iDEFENSE Labs discovered a problem in tcpdump, a
powerful tool for network monitoring and data acquisition. An
attacker is able to send a specially crafted network packet which
causes tcpdump to enter an infinite loop.
In addition to the above problem the tcpdump developers discovered a
potential infinite loop when parsing malformed BGP packets. They also
discovered a buffer overflow that can be exploited with certain
malformed NFS packets.
For the stable distribution (woody) these problems have been
fixed in version 3.6.2-2.3.
The old stable distribution (potato) does not seem to be affected
by these problems.
For the unstable distribution (sid) these problems have been fixed in
We recommend that you upgrade your tcpdump packages.
Solution : http://www.debian.org/security/2003/dsa-255
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.