CVE-2000-0333

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published May 31, 1999

Updated: Nov 20, 2024

Summary

CVE-2000-0333 is a denial-of-service vulnerability affecting tcpdump, Ethereal, and other packet sniffer applications. Malformed DNS packets with a jump offset that references itself can trigger an infinite loop in tcpdump while decompressing the packet. This issue results in the program becoming unresponsive and causing a denial-of-service condition. Attackers can exploit this vulnerability remotely, making it a significant security concern for networks using these packet sniffer tools.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ethereal Group Ethereal

Affected Vendors

Ethereal Group
LBL

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlViQ
https://www.cve.org/CVERecord?id=CVE-2000-0333
https://nvd.nist.gov/vuln/detail/CVE-2000-0333

Back to Vulnerability Database