Family: Ubuntu Local Security Checks --> Category: infos
USN119-1 : tcpdump vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
The remote package "tcpdump" is missing a security patch.
It was discovered that certain invalid GRE, LDP, BGP, and RSVP packets
triggered infinite loops in tcpdump, which caused tcpdump to stop
working. This could be abused by a remote attacker to bypass tcpdump
analysis of network traffic.
Upgrade to :
- tcpdump-3.8.3-3ubuntu0.2 (Ubuntu 5.04)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.