CVE-2003-0108
EPSS 17.0%
Description
isakmp_sub_print in tcpdump 3.6 through 3.7.1 allows remote attackers to cause a denial of service (CPU consumption) via a certain malformed ISAKMP packet to UDP port 500, which causes tcpdump to enter an infinite loop.
How to fix CVE-2003-0108
To remediate CVE-2003-0108, upgrade the affected package to a fixed version below.
- Debian/tcpdump—upgrade to 3.7.1-1.2 or later
Is CVE-2003-0108 being exploited?
Moderate — EPSS is 17.0%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 3.7.1-1.2