Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD9FAE0F1F-DF82-11D9-B875-0001020EED82
HistoryJun 09, 2005 - 12:00 a.m.

tcpdump -- infinite loops in protocol decoding

2005-06-0900:00:00
vuxml.freebsd.org
6

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.828 High

EPSS

Percentile

98.4%

JSON

Problem Description
Several tcpdump protocol decoders contain programming
errors which can cause them to go into infinite loops.
Impact
An attacker can inject specially crafted packets into the
network which, when processed by tcpdump, could lead to a
denial-of-service. After the attack, tcpdump would no
longer capture traffic, and would potentially use all
available processor time.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchfreebsd= 5.4UNKNOWN
FreeBSDanynoarchfreebsd< 5.4_2UNKNOWN
FreeBSDanynoarchtcpdump< 3.8.3_2UNKNOWN

Related

gentoo 1
openvas 14
securityvulns 1
freebsd_advisory 1
nessus 18
f5 2
centos 3
redhat 3
ubuntu 2
debiancve 4
cve 4
ubuntucve 4
osv 1
debian 4
slackware 1
gentoo
gentoo
TCPDump: Decoding routines Denial of Service vulnerability
2005-05-09 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200505-06 (tcpdump)
2008-09-24 00:00:00
FreeBSD Ports: tcpdump
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200505-06 (tcpdump)
2008-09-24 00:00:00
securityvulns
securityvulns
Another tcpdump BGP infinite loop vulnerability &#40;CAN-2005-1267&#41;
2005-06-21 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-05:10.tcpdump
2005-06-09 00:00:00
nessus
nessus
FreeBSD : tcpdump -- infinite loops in protocol decoding (9fae0f1f-df82-11d9-b875-0001020eed82)
2005-07-13 00:00:00
GLSA-200505-06 : TCPDump: Decoding routines Denial of Service vulnerability
2005-05-11 00:00:00
CentOS 3 / 4 : tcpdump (CESA-2005:417)
2006-07-05 00:00:00
f5
f5
tcpdump vulnerabilities CAN-2005-1278, CAN-2005-1279, and CAN-2005-1280
2005-07-21 04:00:00
SOL4809 - tcpdump vulnerabilities - CAN-2005-1278, CAN-2005-1279, and CAN-2005-1280
2005-07-20 00:00:00
centos
centos
arpwatch, libpcap, tcpdump security update
2005-05-11 15:04:44
arpwatch, libpcap, tcpdump security update
2005-05-11 15:02:12
arpwatch, libpcap, tcpdump security update
2005-06-13 14:35:01
redhat
redhat
(RHSA-2005:421) tcpdump security update
2005-05-11 00:00:00
(RHSA-2005:417) tcpdump security update
2005-05-11 00:00:00
(RHSA-2005:505) tcpdump security update
2005-06-13 00:00:00
ubuntu
ubuntu
tcpdump vulnerabilities
2005-05-06 00:00:00
tcpdump vulnerability
2005-06-21 00:00:00
debiancve
debiancve
CVE-2005-1279
2005-05-02 04:00:00
CVE-2005-1278
2005-05-02 04:00:00
CVE-2005-1280
2005-05-02 04:00:00
cve
cve
CVE-2005-1279
2005-05-02 04:00:00
CVE-2005-1278
2005-05-02 04:00:00
CVE-2005-1280
2005-05-02 04:00:00
ubuntucve
ubuntucve
CVE-2005-1279
2005-05-02 00:00:00
CVE-2005-1278
2005-05-02 00:00:00
CVE-2005-1280
2005-05-02 00:00:00
osv
osv
tcpdump - denial of service
2005-10-09 00:00:00
debian
debian
[SECURITY] [DSA 850-1] New tcpdump packages fix denial of service
2005-10-09 04:57:58
[SECURITY] [DSA 854-1] New tcpdump packages fix denial of service
2005-10-09 17:06:06
[SECURITY] [DSA 854-1] New tcpdump packages fix denial of service
2005-10-09 17:06:06
slackware
slackware
tcpdump DoS
2005-07-14 18:13:58

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.828 High

EPSS

Percentile

98.4%

JSON
Related for 9FAE0F1F-DF82-11D9-B875-0001020EED82
gentoo1openvas14securityvulns1freebsd_advisory1nessus18f52centos3redhat3ubuntu2debiancve4cve4ubuntucve4osv1debian4slackware1