CVE-2004-0184 in tcpdumpinfo

Summary

Integer underflow in the isakmp_id_print for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with an Identification payload with a length that becomes less than 8 during byte order conversion, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

03/02/2004

Disclosure

05/04/2004

Moderation

VulDB entry created

Entries

1: VDB-21823

CPE

ready

CWE

CWE-119 (Confirmed)

Exploit

Download

CVSS

5.3

EPSS

0.65309

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-0184
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-0184
CVE Details	https://www.cvedetails.com/cve/CVE-2004-0184/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!