CVE-2019-12997

In Loopchain through 2.2.1.3, an attacker can escalate privileges from a low-privilege shell by changing the environment aka injection in the DEFAULTSCOREHOST environment variable...

Linux Distros Unpatched Vulnerability : CVE-2017-12997

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print- lldp.c:lldpprivate8021print. CVE-2017-12997 Note that Nessus relies ...

CVE-2020-12997

CVE-2020-12997 entry is rejected/not used; it does not represent an active vulnerability.

CVE-2020-12997

...

CVE-2019-12997

CVE-2019-12997 affects Loopchain up to version 2.2.1.3. The issue is a privilege-escalation via environment manipulation, specifically injection in the DEFAULT_SCORE_HOST environment variable, enabling a low-privilege shell user to escalate privileges. The vulnerability is described with high-sev...

CVE-2019-12997

In Loopchain through 2.2.1.3, an attacker can escalate privileges from a low-privilege shell by changing the environment aka injection in the DEFAULTSCOREHOST environment variable...

CVE-2018-12997

CVE-2018-12997 affects Zoho ManageEngine products: NetFlow Analyzer, Network Configuration Manager, OpManager, OpUtils, and Firewall Analyzer. The underlying issue is an Incorrect Access Control in FailOverHelperServlet, allowing unauthenticated attackers to read arbitrary server files by sending...

openSUSE Security Update : tcpdump (openSUSE-2017-1205)

This update for tcpdump to version 4.9.2 fixes several issues. These security issues were fixed : - CVE-2017-11108: Prevent remote attackers to cause DoS heap-based buffer over-read and application crash via crafted packet data. The crash occured in the EXTRACT16BITS function, called from the...

SUSE SLED12 / SLES12 Security Update : tcpdump (SUSE-SU-2017:2854-1)

This update for tcpdump to version 4.9.2 fixes several issues. These security issues were fixed : - CVE-2017-11108: Prevent remote attackers to cause DoS heap-based buffer over-read and application crash via crafted packet data. The crash occured in the EXTRACT16BITS function, called from the...

USN-3415-1: tcpdump vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service application crash or possibly execute arbitrary code...

CVE-2017-12997

The CVE-2017-12997 entry concerns tcpdump’s LLDP parser. A bug in print-lldp.c:lldp_private_8021_print() could cause an infinite loop, enabling a denial-of-service condition. Affected product: tcpdump (versions before 4.9.2). Observed impact per the document: denial of service via infinite loop t...

CVE-2017-12997

The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c:lldpprivate8021print...

CVE-2017-12997

The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c:lldpprivate8021print...

Debian: Security Advisory (DSA-3971-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...