5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.019 Low
EPSS
Percentile
87.3%
Tcpdump is a command-line tool for monitoring network traffic.
A vulnerability exists in tcpdump before 3.7.2 and is related to an
inability to handle unknown RADIUS attributes properly. This vulnerability
allows remote attackers to cause a denial of service (infinite loop).
The Red Hat tcpdump packages advertise that, by default, tcpdump will drop
privileges to user ‘pcap’. Due to a compilation error this did not
happen, and tcpdump would run as root unless the ‘-U’ flag was specified.
Users of tcpdump are advised to upgrade to these errata packages, which
contain a patch correcting the RADIUS issue and are compiled so that by
default tcpdump will drop privileges to the ‘pcap’ user.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | i386 | arpwatch | < 2.1a11-12.2.1AS.4 | arpwatch-2.1a11-12.2.1AS.4.i386.rpm |
RedHat | any | ia64 | arpwatch | < 2.1a11-12.2.1AS.4 | arpwatch-2.1a11-12.2.1AS.4.ia64.rpm |
RedHat | any | i386 | tcpdump | < 3.6.2-12.2.1AS.4 | tcpdump-3.6.2-12.2.1AS.4.i386.rpm |
RedHat | any | i386 | libpcap | < 0.6.2-12.2.1AS.4 | libpcap-0.6.2-12.2.1AS.4.i386.rpm |
RedHat | any | ia64 | tcpdump | < 3.6.2-12.2.1AS.4 | tcpdump-3.6.2-12.2.1AS.4.ia64.rpm |
RedHat | any | ia64 | libpcap | < 0.6.2-12.2.1AS.4 | libpcap-0.6.2-12.2.1AS.4.ia64.rpm |