Tcpdump: Security Vulnerabilities
pcap-linux.c in libpcap 1.1.1 before commit ea9432fabdf4b33cbc76d9437200e028f1c47c93 when snaplen is set may truncate packets, which might allow remote attackers to send arbitrary data while avoiding detection via crafted packets.
CVSS Score
9.8
EPSS Score
0.013
Published
2017-10-20
print-wb.c in tcpdump before 4.7.4 allows remote attackers to cause a denial of service (segmentation fault and process crash).
CVSS Score
7.5
EPSS Score
0.009
Published
2017-09-28
The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-rx.c:ubik_print().
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14
The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c:rpki_rtr_pdu_print().
CVSS Score
9.8
EPSS Score
0.026
Published
2017-09-14
The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print().
CVSS Score
9.8
EPSS Score
0.005
Published
2017-09-14
The CFM parser in tcpdump before 4.9.2 has a buffer over-read in print-cfm.c:cfm_print().
CVSS Score
9.8
EPSS Score
0.014
Published
2017-09-14
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_rt_routing_info().
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14
The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_private_8023_print().
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_is_reach_subtlv().
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14
The Cisco HDLC parser in tcpdump before 4.9.2 has a buffer over-read in print-chdlc.c:chdlc_print().
CVSS Score
9.8
EPSS Score
0.01
Published
2017-09-14