Denial of Service Vulnerability in TCPDUMP 3.8.1 and Earlier via ISAKMP Delete Payload

Denial of Service Vulnerability in TCPDUMP 3.8.1 and Earlier via ISAKMP Delete Payload

CVE-2004-0183 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.

Learn more about our Web Application Penetration Testing UK.