Medium Published: May 04, 2004 Modified: Apr 03, 2025

CVE-2004-0183

5 CVSS Score Medium

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Export CVE-2004-0183 Data:

Link copied!

Description

TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.

CVSS Vector Details

Attack Vector Network

Attack Complexity Low

Confidentiality None

Integrity None

Availability P

Affected Software Configurations

a tcpdump tcpdump * * * * * * * *

Weaknesses (CWE)

CWE-125

References & External Links

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

CVE History Timeline

Jan 01, 2004 05:00 Initial Analysis

Oct 18, 2016 02:41 CVE Modified

Jul 11, 2017 01:29 CVE Modified

Oct 11, 2017 01:29 CVE Modified

Feb 15, 2024 20:53 Modified Analysis

May 14, 2024 01:25 CVE Modified

Nov 20, 2024 23:47 CVE Modified

← Back to CVE Tracker