CVE-2004-0183 - Vulnerability Details - OpenCVE

TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Redhat	Enterprise Linux
Tcpdump	Tcpdump

Configuration 1 [-]

cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 3
tcpdump-14:3.7.2-7.E3.2	cpe:/o:redhat:enterprise_linux:3	RHSA-2004:219	2004-05-26T00:00:00Z

References

Link	Providers
http://marc.info/?l=bugtraq&m=108067265931525&w=2
http://secunia.com/advisories/11258
http://secunia.com/advisories/11320
http://securitytracker.com/id?1009593
http://www.debian.org/security/2004/dsa-478
http://www.kb.cert.org/vuls/id/240790
http://www.rapid7.com/advisories/R7-0017.html
http://www.redhat.com/support/errata/RHSA-2004-219.html
http://www.securityfocus.com/bid/10003
http://www.tcpdump.org/tcpdump-changes.txt
http://www.trustix.org/errata/2004/0015
https://bugzilla.fedora.us/show_bug.cgi?id=1468
https://exchange.xforce.ibmcloud.com/vulnerabilities/15680
https://nvd.nist.gov/vuln/detail/CVE-2004-0183
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A972
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9971
https://www.cve.org/CVERecord?id=CVE-2004-0183

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2004-04-06T04:00:00

Updated: 2024-08-08T00:10:03.556Z

Reserved: 2004-03-02T00:00:00

Link: CVE-2004-0183

Vulnrichment

No data.

NVD

Status : Modified

Published: 2004-05-04T04:00:00.000

Modified: 2024-11-20T23:47:57.193

Link: CVE-2004-0183

Redhat

Severity : Low

Publid Date: 2004-03-29T00:00:00Z

Links: CVE-2004-0183 - Bugzilla

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2004-03-30T00:00:00", "descriptions": [{"lang": "en", "value": "TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-10T00:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "VU#240790", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/240790"}, {"name": "oval:org.mitre.oval:def:9971", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9971"}, {"name": "RHSA-2004:219", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2004-219.html"}, {"name": "1009593", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1009593"}, {"name": "DSA-478", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2004/dsa-478"}, {"name": "11258", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/11258"}, {"name": "2004-0015", "tags": ["vendor-advisory", "x_refsource_TRUSTIX"], "url": "http://www.trustix.org/errata/2004/0015"}, {"name": "11320", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/11320"}, {"name": "tcpdump-isakmp-delete-bo(15680)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15680"}, {"name": "oval:org.mitre.oval:def:972", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A972"}, {"tags": ["x_refsource_MISC"], "url": "http://www.rapid7.com/advisories/R7-0017.html"}, {"name": "10003", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/10003"}, {"name": "FEDORA-2004-1468", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://bugzilla.fedora.us/show_bug.cgi?id=1468"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.tcpdump.org/tcpdump-changes.txt"}, {"name": "20040330 R7-0017: TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=108067265931525&w=2"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-0183", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "VU#240790", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/240790"}, {"name": "oval:org.mitre.oval:def:9971", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9971"}, {"name": "RHSA-2004:219", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2004-219.html"}, {"name": "1009593", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1009593"}, {"name": "DSA-478", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2004/dsa-478"}, {"name": "11258", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/11258"}, {"name": "2004-0015", "refsource": "TRUSTIX", "url": "http://www.trustix.org/errata/2004/0015"}, {"name": "11320", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/11320"}, {"name": "tcpdump-isakmp-delete-bo(15680)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15680"}, {"name": "oval:org.mitre.oval:def:972", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A972"}, {"name": "http://www.rapid7.com/advisories/R7-0017.html", "refsource": "MISC", "url": "http://www.rapid7.com/advisories/R7-0017.html"}, {"name": "10003", "refsource": "BID", "url": "http://www.securityfocus.com/bid/10003"}, {"name": "FEDORA-2004-1468", "refsource": "FEDORA", "url": "https://bugzilla.fedora.us/show_bug.cgi?id=1468"}, {"name": "http://www.tcpdump.org/tcpdump-changes.txt", "refsource": "CONFIRM", "url": "http://www.tcpdump.org/tcpdump-changes.txt"}, {"name": "20040330 R7-0017: TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=108067265931525&w=2"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T00:10:03.556Z"}, "title": "CVE Program Container", "references": [{"name": "VU#240790", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/240790"}, {"name": "oval:org.mitre.oval:def:9971", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9971"}, {"name": "RHSA-2004:219", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2004-219.html"}, {"name": "1009593", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1009593"}, {"name": "DSA-478", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2004/dsa-478"}, {"name": "11258", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/11258"}, {"name": "2004-0015", "tags": ["vendor-advisory", "x_refsource_TRUSTIX", "x_transferred"], "url": "http://www.trustix.org/errata/2004/0015"}, {"name": "11320", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/11320"}, {"name": "tcpdump-isakmp-delete-bo(15680)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15680"}, {"name": "oval:org.mitre.oval:def:972", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A972"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.rapid7.com/advisories/R7-0017.html"}, {"name": "10003", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/10003"}, {"name": "FEDORA-2004-1468", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "https://bugzilla.fedora.us/show_bug.cgi?id=1468"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.tcpdump.org/tcpdump-changes.txt"}, {"name": "20040330 R7-0017: TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=108067265931525&w=2"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-0183", "datePublished": "2004-04-06T04:00:00", "dateReserved": "2004-03-02T00:00:00", "dateUpdated": "2024-08-08T00:10:03.556Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*", "matchCriteriaId": "770A6EDA-10B7-4DB1-B150-A40F015FE3FB", "versionEndIncluding": "3.8.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite."}, {"lang": "es", "value": "TCPDUMP 3.8.1 y anteriores permite a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda) mediante paquetes ISAKMP conteniendo un carga \u00fatil de Dorrado con un gran n\u00fameo de SPIs, lo que causa una lectura fuera de l\u00edmites, como se ha demostrado por el paquete de pruebas de protocolo ISAKMP Striker."}], "id": "CVE-2004-0183", "lastModified": "2024-11-20T23:47:57.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2004-05-04T04:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=108067265931525&w=2"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://secunia.com/advisories/11258"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://secunia.com/advisories/11320"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://securitytracker.com/id?1009593"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2004/dsa-478"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/240790"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.rapid7.com/advisories/R7-0017.html"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.redhat.com/support/errata/RHSA-2004-219.html"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/10003"}, {"source": "cve@mitre.org", "tags": ["Release Notes"], "url": "http://www.tcpdump.org/tcpdump-changes.txt"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.trustix.org/errata/2004/0015"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Issue Tracking"], "url": "https://bugzilla.fedora.us/show_bug.cgi?id=1468"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15680"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A972"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9971"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=108067265931525&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://secunia.com/advisories/11258"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://secunia.com/advisories/11320"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://securitytracker.com/id?1009593"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2004/dsa-478"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/240790"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.rapid7.com/advisories/R7-0017.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.redhat.com/support/errata/RHSA-2004-219.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/10003"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "http://www.tcpdump.org/tcpdump-changes.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.trustix.org/errata/2004/0015"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Issue Tracking"], "url": "https://bugzilla.fedora.us/show_bug.cgi?id=1468"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15680"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A972"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9971"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "nvd@nist.gov", "type": "Primary"}]}