CVE-2000-0333 - CVE Details

Description

tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

ethereal_group - ethereal

Affected Versions:

0.8.4

ethereal_group - ethereal

Affected Versions:

0.8.5

ethereal_group - ethereal

Affected Versions:

0.8.6

lbl - tcpdump

Affected Versions:

lbl - tcpdump

Affected Versions:

3.5a

References

http://www.securityfocus.com/bid/1165
ExploitPatchVendor Advisory
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.SOL.4.10.10005021942380.2077-100000%40paranoia.pgci.ca
http://www.securityfocus.com/bid/1165
ExploitPatchVendor Advisory
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.SOL.4.10.10005021942380.2077-100000%40paranoia.pgci.ca