>>>>> "Sandeep" == Sandeep Singh Kohli <[EMAIL PROTECTED]> writes:
Sandeep> duh? hey raju..for the uninitiated...i know we shud get
Sandeep> this in the first instance..but please can u elaborate a
Sandeep> little what it means... esp this part "The BGP decoding
Sandeep> routines for tcpdump used incorrect bounds checking when
Sandeep> copying data." thanks sandy
tcpdump is vulnerable to a remote (at least) denial of service or (at
worst) root compromise attack. Upgrade time.
Regards,
-- Raju
Sandeep> Raju Mathur wrote:
>> [Fresh from the oven! Today's tcpdump vulnerability! -- Raju]
>>
>> This is an RFC 1153 digest. (1 message)
>> ----------------------------------------------------------------------
>>
>> Message-ID: <[EMAIL PROTECTED]> From:
>> [EMAIL PROTECTED] Sender:
>> [EMAIL PROTECTED] To:
>> [EMAIL PROTECTED] Subject: [Full-Disclosure]
>> [SECURITY] [DSA-206-1] tcpdump BGP decoding error Date: Tue, 10
>> Dec 2002 23:41:24 +0100
>>
>> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
>>
>> - ------------------------------------------------------------------------
>> Debian Security Advisory DSA-206-1 [EMAIL PROTECTED]
>> http://www.debian.org/security/ Wichert Akkerman December 10,
>> 2002
>> - ------------------------------------------------------------------------
>>
>> Package : tcpdump Problem type : incorrect bounds checking
>> Debian-specific: no
>>
>> The BGP decoding routines for tcpdump used incorrect bounds
>> checking when copying data. This could be abused by introducing
>> malicious traffic on a sniffed network for a denial of service
>> attack against tcpdump, or possibly even remote code execution.
>>
>> This has been fixed in version 3.6.2-2.2.
>> [snip]
--
Raju Mathur [EMAIL PROTECTED] http://kandalaya.org/
It is the mind that moves
================================================
To unsubscribe, send email to [EMAIL PROTECTED] with unsubscribe in subject
header. Check archives at http://www.mail-archive.com/ilugd%40wpaa.org
