Lucene search

K
cve[email protected]CVE-2014-8769
HistoryNov 20, 2014 - 5:50 p.m.

CVE-2014-8769

2014-11-2017:50:06
CWE-119
web.nvd.nist.gov
51
cve-2014-8769
tcpdump
remote attackers
sensitive information
memory access
denial of service

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

8.8 High

AI Score

Confidence

High

0.068 Low

EPSS

Percentile

93.9%

tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access.

Affected configurations

NVD
Node
redhattcpdumpMatch3.8.0
OR
redhattcpdumpMatch3.8.2
OR
redhattcpdumpMatch3.9.2
OR
redhattcpdumpMatch3.9.3
OR
redhattcpdumpMatch3.9.4
OR
redhattcpdumpMatch3.9.5
OR
redhattcpdumpMatch3.9.6
OR
redhattcpdumpMatch3.9.7
OR
redhattcpdumpMatch3.9.8
OR
redhattcpdumpMatch4.0.0
OR
redhattcpdumpMatch4.1.0
OR
redhattcpdumpMatch4.1.1
OR
redhattcpdumpMatch4.1.2
OR
redhattcpdumpMatch4.2.1
OR
redhattcpdumpMatch4.3.0
OR
redhattcpdumpMatch4.3.1
OR
redhattcpdumpMatch4.4.0
OR
redhattcpdumpMatch4.5.0
OR
redhattcpdumpMatch4.5.1
OR
redhattcpdumpMatch4.5.2
OR
redhattcpdumpMatch4.6.0
OR
redhattcpdumpMatch4.6.1
OR
redhattcpdumpMatch4.6.2

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

8.8 High

AI Score

Confidence

High

0.068 Low

EPSS

Percentile

93.9%