Full Disclosure mailing list archives
Re: SUSE Security Announcement: tcpdump (SuSE-SA:2004:002)
From: Nico Golde <nion () gmx net>
Date: Thu, 15 Jan 2004 19:22:42 +0100
Hallo Sebastian, * Sebastian Krahmer <krahmer () suse de> [2004-01-15 00:58]: [...]
Tcpdump is a well known tool for administrators to analyze network traffic. There is a bug in the tcpdump code responsible for handling ISAKMP messages. This bug allows remote attackers to destroy a current tcpdump session by tricking the tcpdump program with evil ISAKMP messages to enter an endless loop.
has anybody got some example code for it? regards nico -- Nico Golde nico () ngolde de public key available on: http://www.ngolde.de/gpg.html
Attachment:
_bin
Description:
Current thread:
- SUSE Security Announcement: tcpdump (SuSE-SA:2004:002) Sebastian Krahmer (Jan 14)
- Re: SUSE Security Announcement: tcpdump (SuSE-SA:2004:002) Nico Golde (Jan 15)
- Re: SUSE Security Announcement: tcpdump (SuSE-SA:2004:002) Sebastian Krahmer (Jan 16)
- Re: SUSE Security Announcement: tcpdump (SuSE-SA:2004:002) Nico Golde (Jan 15)
- Re: SUSE Security Announcement: tcpdump (SuSE-SA:2004:002) Nico Golde (Jan 15)