CVE-2003-1029
published 2004-02-17CVE-2003-1029: The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet…
PriorityP425medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
9.92%
95.0th percentile
The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet with invalid data to UDP port 1701, which causes l2tp_avp_print to use a bad length value when calling print_octets.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tcpdump | < tcpdump 3.8.3-1 (bookworm) | tcpdump 3.8.3-1 (bookworm) |
| lbl | tcpdump | — | — |
| lbl | tcpdump | — | — |
| lbl | tcpdump | — | — |
| lbl | tcpdump | — | — |
| lbl | tcpdump | — | — |
| lbl | tcpdump | — | — |
| tcpdump | tcpdump | >= 0 < 3.8.3-1 | 3.8.3-1 |
| tcpdump | tcpdump | >= 0 < 3.8.3-1 | 3.8.3-1 |
| tcpdump | tcpdump | >= 0 < 3.8.3-1 | 3.8.3-1 |
| tcpdump | tcpdump | >= 0 < 3.8.3-1 | 3.8.3-1 |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2003-1029: tcpdump - The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to...
vendor_debian·2003·CVSS 5.0
CVE-2003-1029 [MEDIUM] CVE-2003-1029: tcpdump - The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to...
The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet with invalid data to UDP port 1701, which causes l2tp_avp_print to use a bad length value when calling print_octets.
Scope: local
bookworm: resolved (fixed in 3.8.3-1)
bullseye: resolved (fixed in 3.8.3-1)
forky: resolved (fixed in 3.8.3-1)
sid: resolved (fixed in 3.8.3-1)
trixie: resolved (fixed in 3.8.3-1)
GHSA
GHSA-3h9x-q7vx-j2wh: The L2TP protocol parser in tcpdump 3
ghsa_unreviewed·2022-04-29
CVE-2003-1029 [MEDIUM] GHSA-3h9x-q7vx-j2wh: The L2TP protocol parser in tcpdump 3
The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet with invalid data to UDP port 1701, which causes l2tp_avp_print to use a bad length value when calling print_octets.
OSV
CVE-2003-1029: The L2TP protocol parser in tcpdump 3
osv·2004-02-17·CVSS 5.0
CVE-2003-1029 [MEDIUM] CVE-2003-1029: The L2TP protocol parser in tcpdump 3
The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet with invalid data to UDP port 1701, which causes l2tp_avp_print to use a bad length value when calling print_octets.
No detection rules found.
No writeups or analysis indexed.
http://lwn.net/Alerts/66805/http://marc.info/?l=bugtraq&m=107193841728533&w=2http://marc.info/?l=bugtraq&m=107213553214985&w=2http://marc.info/?l=tcpdump-workers&m=107228187124962&w=2http://secunia.com/advisories/10636http://secunia.com/advisories/10652http://secunia.com/advisories/10668http://secunia.com/advisories/10718http://www.debian.org/security/2004/dsa-425http://www.mandriva.com/security/advisories?name=MDKSA-2004:008http://www.securityfocus.com/archive/1/350238/30/21640/threadedhttp://www.securitytracker.com/id?1008748http://lwn.net/Alerts/66805/http://marc.info/?l=bugtraq&m=107193841728533&w=2http://marc.info/?l=bugtraq&m=107213553214985&w=2http://marc.info/?l=tcpdump-workers&m=107228187124962&w=2http://secunia.com/advisories/10636http://secunia.com/advisories/10652http://secunia.com/advisories/10668http://secunia.com/advisories/10718http://www.debian.org/security/2004/dsa-425http://www.mandriva.com/security/advisories?name=MDKSA-2004:008http://www.securityfocus.com/archive/1/350238/30/21640/threadedhttp://www.securitytracker.com/id?1008748
2004-02-17
Published