CVE-2003-0093

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
03/03/2003
Last modified:
20/11/2024

Description

The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service (crash) via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:lbl:tcpdump:3.4:*:*:*:*:*:*:*
cpe:2.3:a:lbl:tcpdump:3.4a6:*:*:*:*:*:*:*
cpe:2.3:a:lbl:tcpdump:3.5:*:*:*:*:*:*:*
cpe:2.3:a:lbl:tcpdump:3.5.2:*:*:*:*:*:*:*
cpe:2.3:a:lbl:tcpdump:3.6.2:*:*:*:*:*:*:*