Test ID:	1.3.6.1.4.1.25623.1.0.52921
Category:	Turbolinux Local Security Tests
Title:	Turbolinux TLSA-2003-14 (tcpdump)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to tcpdump announced via advisory TLSA-2003-14. Vulnerabilites exist in the tcpdump. When parsing malformed ISAKMP, BGP and NFS packets, it will cause TCPDUMP to enter an infinite look or buffer overflow. This may allow remote attackers to cause a denial of service. Solution: Please use the turbopkg (zabom) tool to apply the update. http://www.securityspace.com/smysecure/catid.html?in=TLSA-2003-14 Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	BugTraq ID: 6974 Common Vulnerability Exposure (CVE) ID: CVE-2003-0108 http://www.securityfocus.com/bid/6974 Bugtraq: 20030227 iDEFENSE Security Advisory 02.27.03: TCPDUMP Denial of Service Vulnerability in ISAKMP Packet Parsin (Google Search) http://marc.info/?l=bugtraq&m=104637420104189&w=2 Bugtraq: 20030304 [OpenPKG-SA-2003.014] OpenPKG Security Advisory (tcpdump) (Google Search) http://marc.info/?l=bugtraq&m=104678787109030&w=2 Conectiva Linux advisory: CLA-2003:629 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000629 Debian Security Information: DSA-255 (Google Search) http://www.debian.org/security/2003/dsa-255 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:027 http://www.idefense.com/advisory/02.27.03.txt http://www.redhat.com/support/errata/RHSA-2003-032.html http://www.redhat.com/support/errata/RHSA-2003-085.html http://www.redhat.com/support/errata/RHSA-2003-214.html SuSE Security Announcement: SuSE-SA:2003:0015 (Google Search) http://www.novell.com/linux/security/advisories/2003_015_tcpdump.html http://www.iss.net/security_center/static/11434.php
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.