VYPR
Unrated severityNVD Advisory· Published Feb 17, 2004· Updated Jun 16, 2026

CVE-2003-1029

CVE-2003-1029

Description

The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet with invalid data to UDP port 1701, which causes l2tp_avp_print to use a bad length value when calling print_octets.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • Lbl/Tcpdump6 versions
    cpe:2.3:a:lbl:tcpdump:3.4:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:lbl:tcpdump:3.4:*:*:*:*:*:*:*
    • cpe:2.3:a:lbl:tcpdump:3.5:*:*:*:*:*:*:*
    • cpe:2.3:a:lbl:tcpdump:3.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:lbl:tcpdump:3.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:lbl:tcpdump:3.6.3:*:*:*:*:*:*:*
    • cpe:2.3:a:lbl:tcpdump:3.7:*:*:*:*:*:*:*
  • Tcpdump/Tcpdumpllm-fuzzy
    Range: <=3.8.1

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.