Denial of Service Vulnerability in tcpdump 3.x via Crafted BGP Packet

Denial of Service Vulnerability in tcpdump 3.x via Crafted BGP Packet

CVE-2005-1267 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the decode_prefix4 function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted BGP packet.

Learn more about our Cis Benchmark Audit For Print Devices.