05 March 2007, 12:08
Update for tcpdump fixes DoS vulnerability
A bug in the network analysis tool tcpdump can cause the application to crash when processing specific WLAN-802.11 frames. The bug is based on a buffer overflow in the parse_elements function. Because the tcpdump library forms the basis of many applications, an attacker could, for example, exploit the vulnerability to disable a WLAN-IDS in order to be able to carry out further attacks undisturbed. The bug was found in version 3.9.5 - previous versions are probably also affected. A patch on the CVS fixes the problem.
- tcpdump: off-by-one heap overflow in 802.11 printer, bug report by Moritz Jodeit
- CVS log for tcpdump/print-802_11.c, description of the update at tcpdump.org
(ehe)
Print Version | Send by email
| Permalink: http://h-online.com/-732419
![Kernel Log: Coming in 3.10 (Part 3) [--] Infrastructure](/imgs/43/1/0/4/2/6/7/2/comingin310_4_kicker-4977194bfb0de0d7.png)
![Kernel Log: Coming in 3.10 (Part 3) [--] Infrastructure](/imgs/43/1/0/4/2/3/2/3/comingin310_3_kicker-151cd7b9e9660f05.png)
