exploits , vulnerabilities , articles , TCPDump LDP Decoding Routines Denial Of Service Vulnerability

Title	TCPDump LDP Decoding Routines Denial Of Service Vulnerability
Published	2005-04-26-12:00AM
Updated	2005-12-19-04:46PM
Class	Failure to Handle Exceptional Conditions
CVE	CAN-2005-1279
Remote	Yes
Local	No
Credit	Discovery of this issue is credited to Vade 79 <v9@fakehalo.us>.
Vulnerable	Turbolinux Turbolinux Server 10.0 Turbolinux Appliance Server 1.0 Workgroup Edition Turbolinux Appliance Server 1.0 Hosting Edition Trustix Secure Linux 2.2 Trustix Secure Linux 2.1 Trustix Secure Enterprise Linux 2.0 SGI ProPack 3.0 SCO Unixware 7.1.4 SCO Unixware 7.1.3 up SCO Unixware 7.1.3 SCO Open Server 6.0 S.u.S.E. SuSE Linux Standard Server 8.0 S.u.S.E. SuSE Linux School Server for i386 S.u.S.E. SUSE LINUX Retail Solution 8.0 S.u.S.E. SuSE Linux Openexchange Server 4.0 S.u.S.E. OpenEnterpriseServer 9.0 S.u.S.E. Novell Linux Desktop 9.0 S.u.S.E. Linux Professional 9.3 x86_64 S.u.S.E. Linux Professional 9.3 S.u.S.E. Linux Professional 9.2 x86_64 S.u.S.E. Linux Professional 9.2 S.u.S.E. Linux Professional 9.1 x86_64 S.u.S.E. Linux Professional 9.1 S.u.S.E. Linux Professional 9.0 x86_64 S.u.S.E. Linux Professional 9.0 S.u.S.E. Linux Professional 8.2 S.u.S.E. Linux Personal 9.3 x86_64 S.u.S.E. Linux Personal 9.3 S.u.S.E. Linux Personal 9.2 x86_64 S.u.S.E. Linux Personal 9.2 S.u.S.E. Linux Personal 9.1 x86_64 S.u.S.E. Linux Personal 9.1 S.u.S.E. Linux Personal 9.0 x86_64 S.u.S.E. Linux Personal 9.0 S.u.S.E. Linux Personal 8.2 S.u.S.E. Linux Enterprise Server 9 S.u.S.E. Linux Enterprise Server 8 S.u.S.E. Linux Desktop 1.0 RedHat Fedora Core3 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux AS 4 RedHat Desktop 4.0 MandrakeSoft Linux Mandrake 10.2 x86_64 MandrakeSoft Linux Mandrake 10.2 MandrakeSoft Linux Mandrake 10.1 x86_64 MandrakeSoft Linux Mandrake 10.1 MandrakeSoft Linux Mandrake 10.0 amd64 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 LBL tcpdump 3.8.3 Debian Linux 3.1 Debian Linux 3.1 alpha Debian Linux 3.1 amd64 Debian Linux 3.1 arm Debian Linux 3.1 hppa Debian Linux 3.1 ia32 Debian Linux 3.1 ia64 Debian Linux 3.1 m68k Debian Linux 3.1 mips Debian Linux 3.1 mipsel Debian Linux 3.1 ppc Debian Linux 3.1 s/390 Debian Linux 3.1 sparc Turbolinux Appliance Server 1.0 Hosting Edition Turbolinux Appliance Server 1.0 Workgroup Edition Turbolinux Appliance Server Hosting Edition 1.0 Turbolinux Appliance Server Workgroup Edition 1.0 Turbolinux Home Turbolinux Turbolinux 10 F... Turbolinux Turbolinux Desktop 10.0 Turbolinux Turbolinux Server 7.0 Turbolinux Turbolinux Server 8.0 Turbolinux Turbolinux Workstation 7.0 Turbolinux Turbolinux Workstation 8.0 Ubuntu Ubuntu Linux 4.1 ia32 Ubuntu Ubuntu Linux 4.1 ia64 Ubuntu Ubuntu Linux 4.1 ppc Ubuntu Ubuntu Linux 5.0 4 amd64 Ubuntu Ubuntu Linux 5.0 4 i386 Ubuntu Ubuntu Linux 5.0 4 powerpc LBL tcpdump 3.8.2 LBL tcpdump 3.8.1 LBL tcpdump 3.7.2 LBL tcpdump 3.7.1 FreeBSD FreeBSD 4.7 FreeBSD FreeBSD 4.7 RELEASE Gentoo Linux 1.4 _rc1 Gentoo Linux 1.4 _rc2 S.u.S.E. Linux 8.1 LBL tcpdump 3.7 FreeBSD FreeBSD 4.2 FreeBSD FreeBSD 4.2 RELEASE FreeBSD FreeBSD 4.2 STABLE FreeBSD FreeBSD 4.3 FreeBSD FreeBSD 4.3 RELEASE FreeBSD FreeBSD 4.3 RELENG FreeBSD FreeBSD 4.3 STABLE FreeBSD FreeBSD 4.4 FreeBSD FreeBSD 4.4 RELENG FreeBSD FreeBSD 4.4 STABLE FreeBSD FreeBSD 4.5 FreeBSD FreeBSD 4.5 RELEASE FreeBSD FreeBSD 4.5 STABLE FreeBSD FreeBSD 4.6 FreeBSD FreeBSD 4.6 RELEASE LBL tcpdump 3.6.3 LBL tcpdump 3.6.2 LBL tcpdump 3.5.2 LBL tcpdump 3.5 alpha LBL tcpdump 3.5 FreeBSD FreeBSD 3.x FreeBSD FreeBSD 4.0 FreeBSD FreeBSD 4.1 FreeBSD FreeBSD 4.1.1 S.u.S.E. Linux 7.3 S.u.S.E. Linux 8.0 LBL tcpdump 3.4 a6 Debian Linux 2.2 Debian Linux 2.2 68k Debian Linux 2.2 alpha Debian Linux 2.2 arm Debian Linux 2.2 IA32 Debian Linux 2.2 powerpc Debian Linux 2.2 sparc S.u.S.E. Firewall Adminhost VPN S.u.S.E. Linux 6.4 S.u.S.E. Linux 7.0 S.u.S.E. Linux 7.1 S.u.S.E. Linux 7.2 S.u.S.E. Linux AdminCD for Firewall S.u.S.E. Linux Connectivity Server S.u.S.E. Linux Database Server S.u.S.E. Linux Enterprise Server 7 S.u.S.E. Linux Enterprise Server for S/390 S.u.S.E. Linux LiveCD for Firewall S.u.S.E. SuSE eMail Server III LBL tcpdump 3.4 IPCop IPCop 1.4.5 IPCop IPCop 1.4.4 IPCop IPCop 1.4.2 IPCop IPCop 1.4.1 Gentoo Linux FreeBSD FreeBSD 5.4 RELENG FreeBSD FreeBSD 5.4 RELEASE FreeBSD FreeBSD 5.4 PRERELEASE FreeBSD FreeBSD 5.3 STABLE FreeBSD FreeBSD 5.3 RELENG FreeBSD FreeBSD 5.3 RELEASE FreeBSD FreeBSD 5.3 FreeBSD FreeBSD 5.2.1 RELEASE FreeBSD FreeBSD 5.2 RELENG FreeBSD FreeBSD 5.2 RELEASE FreeBSD FreeBSD 5.2 FreeBSD FreeBSD 5.1 RELENG FreeBSD FreeBSD 5.1 RELEASE/Alpha FreeBSD FreeBSD 5.1 RELEASEp5 FreeBSD FreeBSD 5.1 RELEASE FreeBSD FreeBSD 5.1 FreeBSD FreeBSD 5.0 RELENG FreeBSD FreeBSD 5.0 RELEASEp14 FreeBSD FreeBSD 5.0 alpha FreeBSD FreeBSD 5.0 F5 BigIP 4.6.5 F5 BigIP 4.6.3 F5 BigIP 4.6.2 F5 BigIP 4.6 F5 BigIP 4.5.12 F5 BigIP 4.5.11 F5 BigIP 4.5.10 F5 BigIP 4.5.9 F5 BigIP 4.5.6 F5 BigIP 4.5 F5 BigIP 4.4 F5 BigIP 4.3 F5 BigIP 4.2 F5 BigIP 4.0 F5 3DNS 4.6.3 F5 3DNS 4.6.2 F5 3DNS 4.6 F5 3DNS 4.5.12 F5 3DNS 4.5.11 F5 3DNS 4.5 F5 3DNS 4.4 F5 3DNS 4.3 F5 3DNS 4.2 Avaya S8710 R2.0.1 Avaya S8710 R2.0.0 Avaya S8700 R2.0.1 Avaya S8700 R2.0.0 Avaya S8500 R2.0.1 Avaya S8500 R2.0.0 Avaya S8300 R2.0.1 Avaya S8300 R2.0.0 Avaya Modular Messaging (MSS) 2.0 Avaya Modular Messaging (MSS) 1.1 Avaya MN100 Avaya Intuity LX Avaya Converged Communications Server 2.0
Not Vulnerable	F5 BigIP 4.7 F5 BigIP 4.5.13 F5 3-DNS 4.7 F5 3-DNS 4.5.13
Code	The following exploit is available: /data/vulnerabilities/exploits/xtcpdump-ldp-dos.c
TXT

Vulnerabilities - newest 10 RSS | More

• 2008-12-01 SystemImager Flamethrower Insecure Temporary File Creation Vulnerabilities
• 2008-12-01 Rumpus FTP Server Command Argument Remote Buffer Overflow Vulnerability
• 2008-12-01 Rumpus FTP Server HTTP Command Remote Denial of Service Vulnerability
• 2008-11-29 Multiple ActiveWebSoftwares Products Login Parameters SQL Injection Vulnerabilities
• 2008-11-29 Venalsur Booking Centre Multiple Cross-Site Scripting Vulnerabilities
• 2008-11-28 ReVou Login SQL Injection Vulnerability
• 2008-11-28 Web Calendar System SQL Injection and Cross Site Scripting Vulnerabilities
• 2008-11-28 SailPlanner Login SQL Injection Vulnerability
• 2008-11-28 Livio.net WEB Calendar Cross Site Scripting and Multiple SQL Injection Vulnerabilities
• 2008-11-28 Subtext Anchor Tags HTML Injection Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Tue, 02 Dec 2008 04:08:44 +0000