Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2005:505
HistoryJun 13, 2005 - 2:35 p.m.

arpwatch, libpcap, tcpdump security update

2005-06-1314:35:01
CentOS Project
lists.centos.org
53

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.068

Percentile

93.9%

JSON

CentOS Errata and Security Advisory CESA-2005:505

Tcpdump is a command line tool for monitoring network traffic.

A denial of service bug was found in tcpdump during the processing of
certain network packets. It is possible for an attacker to inject a
carefully crafted packet onto the network, crashing a running tcpdump
session. The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CAN-2005-1267 to this issue.

Users of tcpdump are advised to upgrade to these erratum packages, which
contain backported security patches and are not vulnerable to these issues.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2005-June/073977.html
https://lists.centos.org/pipermail/centos-announce/2005-June/073978.html
https://lists.centos.org/pipermail/centos-announce/2005-June/074001.html

Affected packages:
arpwatch
libpcap
tcpdump

Upstream details at:
https://access.redhat.com/errata/RHSA-2005:505

Related

redhat 1
debian 2
debiancve 1
nessus 10
openvas 10
ubuntu 1
cvelist 1
slackware 1
exploitdb 1
nvd 1
ubuntucve 1
cve 1
gentoo 1
freebsd 1
securityvulns 1
freebsd_advisory 1
redhat
redhat
(RHSA-2005:505) tcpdump security update
2005-06-13 00:00:00
debian
debian
[SECURITY] [DSA 854-1] New tcpdump packages fix denial of service
2005-10-09 17:06:06
[SECURITY] [DSA 854-1] New tcpdump packages fix denial of service
2005-10-09 17:06:06
debiancve
debiancve
CVE-2005-1267
2005-06-20 04:00:00
nessus
nessus
Fedora Core 3 : tcpdump-3.8.2-9.FC3 (2005-406)
2005-06-10 00:00:00
RHEL 4 : tcpdump (RHSA-2005:505)
2005-06-13 00:00:00
Ubuntu 4.10 / 5.04 : tcpdump vulnerability (USN-141-1)
2006-01-15 00:00:00
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-05:10.tcpdump.asc)
2008-09-04 00:00:00
Debian Security Advisory DSA 854-1 (tcpdump)
2008-01-17 00:00:00
Slackware Advisory SSA:2005-195-10 tcpdump DoS
2012-09-11 00:00:00
ubuntu
ubuntu
tcpdump vulnerability
2005-06-21 00:00:00
cvelist
cvelist
CVE-2005-1267
2005-06-20 04:00:00
slackware
slackware
tcpdump DoS
2005-07-14 18:13:58
exploitdb
exploitdb
Tcpdump - bgp_update_print Remote Denial of Service
2005-06-09 00:00:00
nvd
nvd
CVE-2005-1267
2005-06-10 04:00:00
ubuntucve
ubuntucve
CVE-2005-1267
2005-06-10 00:00:00
cve
cve
CVE-2005-1267
2005-06-20 04:00:00
gentoo
gentoo
TCPDump: Decoding routines Denial of Service vulnerability
2005-05-09 00:00:00
freebsd
freebsd
tcpdump -- infinite loops in protocol decoding
2005-06-09 00:00:00
securityvulns
securityvulns
Another tcpdump BGP infinite loop vulnerability (CAN-2005-1267)
2005-06-21 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-05:10.tcpdump
2005-06-09 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.068

Percentile

93.9%

JSON
Related for CESA-2005:505
redhat1debian2debiancve1nessus10openvas10ubuntu1cvelist1slackware1exploitdb1nvd1ubuntucve1cve1gentoo1freebsd1securityvulns1freebsd_advisory1