Lucene search

K

PRIOn knowledge basePRION:CVE-2015-2154

HistoryMar 24, 2015 - 5:59 p.m.

Out-of-bounds

2015-03-2417:59:00

PRIOn knowledge base

www.prio-n.com

5

6.8 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.11 Low

EPSS

Percentile

95.0%

The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.

CPENameOperatorVersion
tcpdumple4.7.0

References

advisories.mageia.org/MGASA-2015-0114.html

lists.opensuse.org/opensuse-updates/2015-03/msg00084.html

packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html

www.debian.org/security/2015/dsa-3193

www.mandriva.com/security/advisories?name=MDVSA-2015:125

www.mandriva.com/security/advisories?name=MDVSA-2015:182

www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html

www.securityfocus.com/archive/1/534829/100/0/threaded

www.securityfocus.com/bid/73017

www.securitytracker.com/id/1031937

www.ubuntu.com/usn/USN-2580-1

access.redhat.com/errata/RHSA-2017:1871

bugzilla.redhat.com/show_bug.cgi?id=1201797

lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html

lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html

security.gentoo.org/glsa/201510-04

6.8 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.11 Low

EPSS

Percentile

95.0%

Related for PRION:CVE-2015-2154

cve1 debiancve1 ubuntucve1 amazon1 nessus20 openvas16 debian3 osv1 fedora3 f52 gentoo1 mageia1 kaspersky1 ubuntu1 securityvulns2 archlinux1 ibm2 redhat1 centos1 oraclelinux1