Linux.TCPDump.RADIUS.Packet.DoS
Description
Version 3.8.1 and earlier of the Tcpdump utility allow remote attackers to cause a denial of service, via a RADIUS attribute with a large length value, in the print_attr_string function of print-radiu.c. This flaw is due to the lack of upper-bound checking for the length value which causes a segmentation fault. This bug can be exploited by sending a carefully crafted packet to the victim, which could result in a denial of service, or possibly execute code as the 'pcap' user.
Affected Products
SGI ProPack 2.3/2.4
SGI ProPack 2.3
SCO Unixware 7.1.3 up
RedHat Fedora Core1
LBL tcpdump 3.7.1
LBL tcpdump 3.7
LBL tcpdump 3.6.2
LBL tcpdump 3.5.2
Apple Mac OS X Server 10.3.2
Apple Mac OS X Server 10.3.1
Apple Mac OS X Server 10.3
Apple Mac OS X Server 10.2.8
Apple Mac OS X Server 10.2.7
Apple Mac OS X Server 10.2.6
Apple Mac OS X Server 10.2.5
Apple Mac OS X Server 10.2.4
Apple Mac OS X Server 10.2.3
Apple Mac OS X Server 10.2.2
Apple Mac OS X Server 10.2.1
Apple Mac OS X Server 10.2
Apple Mac OS X Server 10.1.5
Apple Mac OS X Server 10.1.4
Apple Mac OS X Server 10.1.3
Apple Mac OS X Server 10.1.2
Apple Mac OS X Server 10.1.1
Apple Mac OS X Server 10.1
Apple Mac OS X 10.3.2
Apple Mac OS X 10.3.1
Apple Mac OS X 10.3
Apple Mac OS X 10.2.8
Apple Mac OS X 10.2.7
Apple Mac OS X 10.2.6
Apple Mac OS X 10.2.5
Apple Mac OS X 10.2.4
Apple Mac OS X 10.2.3
Apple Mac OS X 10.2.2
Apple Mac OS X 10.2.1
Apple Mac OS X 10.2
Apple Mac OS X 10.1.5
Apple Mac OS X 10.1.4
Apple Mac OS X 10.1.3
Apple Mac OS X 10.1.2
Apple Mac OS X 10.1.1
Apple Mac OS X 10.1
Apple Mac OS X 10.1
Impact
Denial of service
The execution of arbitrary code on the system as the 'pcap' user.
Recommended Actions
The following advisories are released that address this issue:
- Red Hat has released advisory FEDORA-2004-090 for Fedora.
- Guardian Digital Security has released advisory ESA-20030430-014 for EnGarde Secure Linux.
- Red Hat has released advisory RHSA-2003:032-01.
- OpenPKG has released advisory OpenPKG-SA-2004.002.
- Mandrake has released advisory MDKSA-2004:008.
- SGI has released advisory 20040103-01-U.
- Fedora Legacy has released advisory FLSA:1222.
- SGI has released advisory 20040202-01-U.
- SCO has released advisory CSSA-2004-008.0.
- RedHat has released advisory FEDORA-2004-091.
- Conectiva has released advisory CLSA-2004:832.
- SCO has released advisory SCOSA-2004.9.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |