tcpdump ISIS isis_print() Function Malformed Packet DoS

2005-04-26T10:16:10
ID OSVDB:15862
Type osvdb
Reporter Vade79(v9@fakehalo.us)
Modified 2005-04-26T10:16:10

Description

Vulnerability Description

tcpdump contains a flaw that may allow a remote denial of service. The issue is triggered due to the isis_print() function when handling Intermediate-System to Intermediate-System (ISIS) packets. By sending a malformed ISIS packet, a remote attacker could cause the application to enter an infinite loop resulting in a loss of availability.

Solution Description

Upgrade to version CVS-Current or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

tcpdump contains a flaw that may allow a remote denial of service. The issue is triggered due to the isis_print() function when handling Intermediate-System to Intermediate-System (ISIS) packets. By sending a malformed ISIS packet, a remote attacker could cause the application to enter an infinite loop resulting in a loss of availability.

References:

Vendor URL: http://www.tcpdump.org/ Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Security Tracker: 1013947 Secunia Advisory ID:16050 Secunia Advisory ID:15646 Secunia Advisory ID:18146 Secunia Advisory ID:15174 Secunia Advisory ID:15125 Related OSVDB ID: 15864 Related OSVDB ID: 15863 Other Advisory URL: http://lists.suse.com/archive/suse-security-announce/2005-Jul/0004.html Other Advisory URL: ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.60/SCOSA-2005.60.txt Other Advisory URL: http://www.ubuntulinux.org/support/documentation/usn/usn-119-1 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-04/0482.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-04/0434.html ISS X-Force ID: 20288 CVE-2005-1278 Bugtraq ID: 13392