Test ID:	1.3.6.1.4.1.25623.1.0.53333
Category:	Debian Local Security Checks
Title:	Debian Security Advisory DSA 261-1 (tcpdump)
Summary:	The remote host is missing an update to tcpdump;announced via advisory DSA 261-1.
Description:	Summary: The remote host is missing an update to tcpdump announced via advisory DSA 261-1. Vulnerability Insight: A problem has been discovered in tcpdump, a powerful tool for network monitoring and data acquisition. An attacker is able to send a specially crafted RADIUS network packet which causes tcpdump to enter an infinite loop. For the stable distribution (woody) this problem has been fixed in version 3.6.2-2.4. The old stable distribution (potato) does not seem to be affected by this problem. The unstable distribution (sid) is not affected by this problem anymore. Solution: We recommend that you upgrade your tcpdump package. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0093 Debian Security Information: DSA-261 (Google Search) http://www.debian.org/security/2003/dsa-261 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:027 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=81585 http://www.redhat.com/support/errata/RHSA-2003-032.html http://www.redhat.com/support/errata/RHSA-2003-033.html http://www.redhat.com/support/errata/RHSA-2003-214.html XForce ISS Database: tcpdump-radius-decoder-dos(11324) https://exchange.xforce.ibmcloud.com/vulnerabilities/11324
Copyright	Copyright (C) 2008 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.