Linux.TCPDump.RADIUS.Packet.DoS

description-logoDescription

Version 3.8.1 and earlier of the Tcpdump utility allow remote attackers to cause a denial of service, via a RADIUS attribute with a large length value, in the print_attr_string function of print-radiu.c. This flaw is due to the lack of upper-bound checking for the length value which causes a segmentation fault. This bug can be exploited by sending a carefully crafted packet to the victim, which could result in a denial of service, or possibly execute code as the 'pcap' user.

affected-products-logoAffected Products

SGI ProPack 2.3/2.4
SGI ProPack 2.3
SCO Unixware 7.1.3 up
RedHat Fedora Core1
LBL tcpdump 3.7.1
LBL tcpdump 3.7
LBL tcpdump 3.6.2
LBL tcpdump 3.5.2
Apple Mac OS X Server 10.3.2
Apple Mac OS X Server 10.3.1
Apple Mac OS X Server 10.3
Apple Mac OS X Server 10.2.8
Apple Mac OS X Server 10.2.7
Apple Mac OS X Server 10.2.6
Apple Mac OS X Server 10.2.5
Apple Mac OS X Server 10.2.4
Apple Mac OS X Server 10.2.3
Apple Mac OS X Server 10.2.2
Apple Mac OS X Server 10.2.1
Apple Mac OS X Server 10.2
Apple Mac OS X Server 10.1.5
Apple Mac OS X Server 10.1.4
Apple Mac OS X Server 10.1.3
Apple Mac OS X Server 10.1.2
Apple Mac OS X Server 10.1.1
Apple Mac OS X Server 10.1
Apple Mac OS X 10.3.2
Apple Mac OS X 10.3.1
Apple Mac OS X 10.3
Apple Mac OS X 10.2.8
Apple Mac OS X 10.2.7
Apple Mac OS X 10.2.6
Apple Mac OS X 10.2.5
Apple Mac OS X 10.2.4
Apple Mac OS X 10.2.3
Apple Mac OS X 10.2.2
Apple Mac OS X 10.2.1
Apple Mac OS X 10.2
Apple Mac OS X 10.1.5
Apple Mac OS X 10.1.4
Apple Mac OS X 10.1.3
Apple Mac OS X 10.1.2
Apple Mac OS X 10.1.1
Apple Mac OS X 10.1
Apple Mac OS X 10.1

Impact logoImpact

Denial of service
The execution of arbitrary code on the system as the 'pcap' user.

recomended-action-logoRecommended Actions

The following advisories are released that address this issue:

  • Red Hat has released advisory FEDORA-2004-090 for Fedora.
  • Guardian Digital Security has released advisory ESA-20030430-014 for EnGarde Secure Linux.
  • Red Hat has released advisory RHSA-2003:032-01.
  • OpenPKG has released advisory OpenPKG-SA-2004.002.
  • Mandrake has released advisory MDKSA-2004:008.
  • SGI has released advisory 20040103-01-U.
  • Fedora Legacy has released advisory FLSA:1222.
  • SGI has released advisory 20040202-01-U.
  • SCO has released advisory CSSA-2004-008.0.
  • RedHat has released advisory FEDORA-2004-091.
  • Conectiva has released advisory CLSA-2004:832.
  • SCO has released advisory SCOSA-2004.9.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)