Family: Debian Local Security Checks --> Category: infos
[DSA261] DSA-261-1 tcpdump Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
A problem has been discovered in tcpdump, a powerful tool for network
monitoring and data acquisition. A possible hacker is able to send a
specially crafted RADIUS network packet which causes tcpdump to enter
an infinite loop.
For the stable distribution (woody) this problem has been
fixed in version 3.6.2-2.4.
The old stable distribution (potato) does not seem to be affected
by this problem.
The unstable distribution (sid) is not affected by this problem anymore.
We recommend that you upgrade your tcpdump package.
Solution : http://www.debian.org/security/2003/dsa-261
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.