首页 -> 安全研究
安全研究
安全漏洞
TCPDump远程内存破坏漏洞
发布日期:2002-11-20
更新日期:2002-11-27
受影响系统:
LBL tcpdump 3.5.2描述:
LBL tcpdump 3.5
LBL tcpdump 3.4a6
LBL tcpdump 3.4
LBL tcpdump 3.6.2
- Caldera Open Linux Workstation 3.1.1
- Caldera Open Linux Workstation 3.1
- Caldera Open Linux Server 3.1.1
- Caldera Open Linux Server 3.1
- Conectiva Linux 8.0
- Conectiva Linux 7.0
- Conectiva Linux 6.0
- Conectiva Linux 5.1
- Conectiva Linux 5.0
- FreeBSD 4.3
- FreeBSD 4.2
- FreeBSD 4.1.1
- FreeBSD 4.1
- FreeBSD 4.0
- Mandrake Linux 8.2
- Mandrake Linux 8.1
- Mandrake Linux 8.0
- Mandrake Linux 7.2
- Mandrake Linux 7.1
- RedHat Linux 7.2
- RedHat Linux 7.1
- RedHat Linux 7.0
- RedHat Linux 6.2
- Trustix Secure Linux 1.5
- Trustix Secure Linux 1.2
- Trustix Secure Linux 1.1
BUGTRAQ ID: 6213
CVE(CAN) ID: CVE-2002-1350
TCPDump是一款网络分析程序,使用于多种Unix操作系统。
TCPDump不正确分配操作符大小,远程攻击者可以利用这个漏洞进行拒绝服务攻击。
TCPDump包含的一个操作符没有正确分配内存大小,可导致内存破坏,使tcpdump崩溃。
问题存在与print-bgp.c代码中,目前没有获得详细漏洞细节。
<*来源:SCO Security Advisory
链接:ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2002-050.0.txt
*>
建议:
厂商补丁:
Caldera
-------
Caldera已经为此发布了一个安全公告(CSSA-2002-050.0)以及相应补丁:
CSSA-2002-050.0:Linux: tcpdump denial-of-service in print-bgp.c
链接:ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2002-050.0.txt
补丁下载:
1. OpenLinux 3.1.1 Server
4.1 Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2002-050.0/RPMS
4.2 Packages
88099679d803eb7f1583f99ccaa68fed tcpdump-3.6.2-4.i386.rpm
4.3 Installation
rpm -Fvh tcpdump-3.6.2-4.i386.rpm
4.4 Source Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2002-050.0/SRPMS
4.5 Source Packages
098cc3870c3f665a0d8ca1ab33bd3aca tcpdump-3.6.2-4.src.rpm
2. OpenLinux 3.1.1 Workstation
5.1 Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2002-050.0/RPMS
5.2 Packages
45db66a34637547e551b5c6617a96146 tcpdump-3.6.2-4.i386.rpm
5.3 Installation
rpm -Fvh tcpdump-3.6.2-4.i386.rpm
5.4 Source Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2002-050.0/SRPMS
5.5 Source Packages
debcc7c371ef1857da6cf5beb2c9fb99 tcpdump-3.6.2-4.src.rpm
3. OpenLinux 3.1 Server
6.1 Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Server/CSSA-2002-050.0/RPMS
6.2 Packages
890d010599a09f88ab2264e3c737e8b8 tcpdump-3.6.2-4.i386.rpm
6.3 Installation
rpm -Fvh tcpdump-3.6.2-4.i386.rpm
6.4 Source Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Server/CSSA-2002-050.0/SRPMS
6.5 Source Packages
57282f9d95d4ac217472b37e1e4424ca tcpdump-3.6.2-4.src.rpm
4. OpenLinux 3.1 Workstation
7.1 Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Workstation/CSSA-2002-050.0/RPMS
7.2 Packages
2e80f4e77cee7899bfbfc7c0552da424 tcpdump-3.6.2-4.i386.rpm
7.3 Installation
rpm -Fvh tcpdump-3.6.2-4.i386.rpm
7.4 Source Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Workstation/CSSA-2002-050.0/SRPMS
7.5 Source Packages
d16939d580b36f127b12693548f17655 tcpdump-3.6.2-4.src.rpm
浏览次数:3158
严重程度:0(网友投票)
绿盟科技给您安全的保障