Intrusion Prevention

Tcpdump.L2TP.Parser.Remote.DoS

Description

It indicates a attacker attempted a Denial of Service attack against TCPDump. TCPDump is vulnerable to a Denial of Service if a malicious attacker sends a packet containing 0xff,0x02 bytes to UDP port 1701. Such a packet will cause the service to crash.

Affected Products

LBL tcpdump 3.8.1 and earlier versions.

Impact

Denial of Service

Recommended Actions

Apply appropriate patch from the vendor or Upgrade to non-vulnerable version if available.

CVE References

CVE-2003-1029