VDB
CVE-2004-0057
CVE-2004-0057
PUBLISHED
CVSS 5 MEDIUM
The rawprint function in the ISAKMP decoding routines (print-isakmp.c) for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via malformed ISAKMP packets that cause invalid "len" or "loc" values to be used in a loop, a different vulnerability than CVE-2003-0989.
EPSS 26.20% · 96.4th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
26.20%
96.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| lbl | tcpdump | 0 |
Timeline
- Jan 15, 2004 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- VU#174086 third-party-advisory
- 20040202-01-U vendor-advisory
- FEDORA-2004-090 vendor-advisory
- 10718 third-party-advisory
- SCOSA-2004.9 vendor-advisory
- RHSA-2004:008 vendor-advisory
- oval:org.mitre.oval:def:11197 vdb
- FLSA:1222 vendor-advisory
- oval:org.mitre.oval:def:854 vdb
- 11032 third-party-advisory
- 10668 third-party-advisory
- CSSA-2004-008.0 vendor-advisory
- [tcpdump-workers] multiple vulnerabilities in tcpdump 3.8.1 mailing-list
- [fedora-announce-list] 20040311 Re: [SECURITY] Fedora Core 1 Update: tcpdump-3.7.2-8.fc1.1 mailing-list
- 11022 third-party-advisory
- 10636 third-party-advisory
- 20040131 [FLSA-2004:1222] Updated tcpdump resolves security vulnerabilites (resend with correct paths) mailing-list
- 1008716 vdb
- tcpdump-rawprint-isakmp-dos(14837) vdb
- ESA-20040119-002 vendor-advisory
…and 19 more