Lbl: >> Tcpdump Security Vulnerabilities
The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash).
CVSS Score
7.5
EPSS Score
0.025
Published
2002-12-23
Buffer overflow in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via an NFS packet.
CVSS Score
7.5
EPSS Score
0.044
Published
2002-06-18
ip_print procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet with a zero length header, which causes an infinite loop and core dump when tcpdump prints the packet.
CVSS Score
7.5
EPSS Score
0.044
Published
2001-11-28
Buffer overflow in print-rx.c of tcpdump 3.x (probably 3.6x) allows remote attackers to cause a denial of service and possibly execute arbitrary code via AFS RPC packets with invalid lengths that trigger an integer signedness error, a different vulnerability than CVE-2000-1026.
CVSS Score
7.5
EPSS Score
0.13
Published
2001-07-17
Multiple buffer overflows in LBNL tcpdump allow remote attackers to execute arbitrary commands.
CVSS Score
10.0
EPSS Score
0.045
Published
2000-12-11
tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet.
CVSS Score
5.0
EPSS Score
0.054
Published
1999-05-31
Page 2