Red Hat Local Security Checks : RedHat Security Advisory RHSA-2003:033

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.51199

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2003:033

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2003:033.

Updated tcpdump, libpcap, and arpwatch packages are available to fix an
incorrect bounds check when decoding BGP packets and a possible denial of
service.

Tcpdump is a command-line tool for monitoring network traffic.

The BGP decoding routines in tcpdump before version 3.6.2 used incorrect
bounds checking when copying data, which allows remote attackers to cause a
denial of service and possibly execute arbitrary code (as the 'pcap' user).

If a UDP packet from a radius port contains 0 at the second byte tcpdump
gets stuck in a loop that generating an infinite stream of '#0#0#0#0#0'.
This could be used as a denial of service.

Users of tcpdump are advised to upgrade to these errata packages which
contain patches to correct thes issues.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2003-033.html

Risk factor : High

CVSS Score:
7.5

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2002-1350
BugTraq ID: 6213
http://www.securityfocus.com/bid/6213
Bugtraq: 20021219 TSLSA-2002-0084 - tcpdump (Google Search)
http://marc.info/?l=bugtraq&m=104032975103398&w=2
Caldera Security Advisory: CSSA-2002-050.0
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-050.0.txt
Debian Security Information: DSA-206 (Google Search)
http://www.debian.org/security/2002/dsa-206
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:027
http://www.tcpdump.org/lists/workers/2001/10/msg00101.html
http://www.redhat.com/support/errata/RHSA-2003-032.html
http://www.redhat.com/support/errata/RHSA-2003-033.html
http://www.redhat.com/support/errata/RHSA-2003-214.html
XForce ISS Database: tcpdump-sizeof-memory-corruption(10695)
https://exchange.xforce.ibmcloud.com/vulnerabilities/10695
Common Vulnerability Exposure (CVE) ID: CVE-2003-0093
Debian Security Information: DSA-261 (Google Search)
http://www.debian.org/security/2003/dsa-261
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=81585
XForce ISS Database: tcpdump-radius-decoder-dos(11324)
https://exchange.xforce.ibmcloud.com/vulnerabilities/11324

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.51199
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2003:033
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2003:033. Updated tcpdump, libpcap, and arpwatch packages are available to fix an incorrect bounds check when decoding BGP packets and a possible denial of service. Tcpdump is a command-line tool for monitoring network traffic. The BGP decoding routines in tcpdump before version 3.6.2 used incorrect bounds checking when copying data, which allows remote attackers to cause a denial of service and possibly execute arbitrary code (as the 'pcap' user). If a UDP packet from a radius port contains 0 at the second byte tcpdump gets stuck in a loop that generating an infinite stream of '#0#0#0#0#0'. This could be used as a denial of service. Users of tcpdump are advised to upgrade to these errata packages which contain patches to correct thes issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2003-033.html Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2002-1350 BugTraq ID: 6213 http://www.securityfocus.com/bid/6213 Bugtraq: 20021219 TSLSA-2002-0084 - tcpdump (Google Search) http://marc.info/?l=bugtraq&m=104032975103398&w=2 Caldera Security Advisory: CSSA-2002-050.0 ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-050.0.txt Debian Security Information: DSA-206 (Google Search) http://www.debian.org/security/2002/dsa-206 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:027 http://www.tcpdump.org/lists/workers/2001/10/msg00101.html http://www.redhat.com/support/errata/RHSA-2003-032.html http://www.redhat.com/support/errata/RHSA-2003-033.html http://www.redhat.com/support/errata/RHSA-2003-214.html XForce ISS Database: tcpdump-sizeof-memory-corruption(10695) https://exchange.xforce.ibmcloud.com/vulnerabilities/10695 Common Vulnerability Exposure (CVE) ID: CVE-2003-0093 Debian Security Information: DSA-261 (Google Search) http://www.debian.org/security/2003/dsa-261 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=81585 XForce ISS Database: tcpdump-radius-decoder-dos(11324) https://exchange.xforce.ibmcloud.com/vulnerabilities/11324
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com