Lucene search

[email protected]CVE-2002-1350

HistoryDec 23, 2002 - 5:00 a.m.

CVE-2002-1350

2002-12-2305:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-1350

bgp

tcpdump

denial of service

application crash

nvd

6.5 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.024 Low

EPSS

Percentile

89.8%

JSON

The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash).

CPENameOperatorVersion
lbl:tcpdumplbl tcpdumple3.6.2.2.2

CPE	Name	Operator	Version
lbl:tcpdump	lbl tcpdump	le	3.6.2.2.2

References

ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-050.0.txt

marc.info/?l=bugtraq&m=104032975103398&w=2

www.debian.org/security/2002/dsa-206

www.mandrakesoft.com/security/advisories?name=MDKSA-2003:027

www.redhat.com/support/errata/RHSA-2003-032.html

www.redhat.com/support/errata/RHSA-2003-033.html

www.redhat.com/support/errata/RHSA-2003-214.html

www.securityfocus.com/bid/6213

www.tcpdump.org/lists/workers/2001/10/msg00101.html

exchange.xforce.ibmcloud.com/vulnerabilities/10695

6.5 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.024 Low

EPSS

Percentile

89.8%

JSON

Related for CVE-2002-1350

openvas2 osv1 cvelist1 nessus3 debiancve1 redhat1