Lucene search

[email protected]CVE-2003-0145

HistoryMar 31, 2003 - 5:00 a.m.

CVE-2003-0145

2003-03-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

tcpdump

vulnerability

denial of service

remote attackers

radius attributes

infinite loop

6.4 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.019 Low

EPSS

Percentile

88.4%

JSON

Unknown vulnerability in tcpdump before 3.7.2 related to an inability to “Handle unknown RADIUS attributes properly,” allows remote attackers to cause a denial of service (infinite loop), a different vulnerability than CAN-2003-0093.

CPENameOperatorVersion
lbl:tcpdumplbl tcpdumpeq3.7.1
lbl:tcpdumplbl tcpdumpeq3.5.2
lbl:tcpdumplbl tcpdumpeq3.7
lbl:tcpdumplbl tcpdumpeq3.6.2

CPE	Name	Operator	Version
lbl:tcpdump	lbl tcpdump	eq	3.7.1
lbl:tcpdump	lbl tcpdump	eq	3.5.2
lbl:tcpdump	lbl tcpdump	eq	3.7
lbl:tcpdump	lbl tcpdump	eq	3.6.2

References

www.debian.org/security/2003/dsa-261

www.mandrakesoft.com/security/advisories?name=MDKSA-2003:027

www.redhat.com/support/errata/RHSA-2003-032.html

www.redhat.com/support/errata/RHSA-2003-151.html

www.redhat.com/support/errata/RHSA-2003-214.html

www.tcpdump.org/tcpdump-changes.txt

exchange.xforce.ibmcloud.com/vulnerabilities/11857

6.4 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.019 Low

EPSS

Percentile

88.4%

JSON

Related for CVE-2003-0145

nessus4 debiancve2 osv1 redhat2 cve1 openvas2 debian2