Lucene search
+L

92 matches found

osv
osv
added 2018/08/05 3:29 a.m.1 views

DEBIAN-CVE-2018-14938

An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handleprism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle80211, which will result in an out-of-bounds...

9.1CVSS8.9AI score0.02753EPSS
Exploits1References1
osv
osv
added 2018/08/05 3:29 a.m.21 views

CVE-2018-14938

An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handleprism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle80211, which will result in an out-of-bounds...

9.1CVSS6.9AI score
Exploits0References4
cve
cve
added 2018/08/05 3:0 a.m.85 views

CVE-2018-14938

tcpflow

9.1CVSS8.9AI score0.02753EPSS
Exploits1References4Affected Software1
debiancve
debiancve
added 2018/08/05 3:0 a.m.54 views

CVE-2018-14938

An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handleprism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle80211, which will result in an out-of-bounds...

9.1CVSS9.2AI score0.02753EPSS
Exploits1
alpinelinux
alpinelinux
added 2018/08/05 3:0 a.m.64 views

CVE-2018-14938

An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handleprism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle80211, which will result in an out-of-bounds...

9.1CVSS9.2AI score0.02753EPSS
Exploits1
ubuntucve
ubuntucve
added 2018/08/04 12:0 a.m.24 views

CVE-2018-14938

An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handleprism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle80211, which will result in an out-of-bounds...

9.1CVSS7.2AI score0.02753EPSS
Exploits1References4
osv
osv
added 2018/08/04 12:0 a.m.3 views

UBUNTU-CVE-2018-14938

An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handleprism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle80211, which will result in an out-of-bounds...

9.1CVSS7.3AI score0.02753EPSS
Exploits1References5
nvd
nvd
added 2003/08/27 4:0 a.m.18 views

CVE-2003-0671

Format string vulnerability in tcpflow, when used in a setuid context, allows local users to execute arbitrary code via the device name argument, as demonstrated in Sustworks IPNetSentryX and IPNetMonitorX the setuid program RunTCPFlow...

7.2CVSS7.2AI score0.0055EPSS
Exploits1References2
cve
cve
added 2003/08/14 4:0 a.m.49 views

CVE-2003-0670

Sustworks IPNetSentryX and IPNetMonitorX are affected. The setuid helper applications RunTCPDump (invokes tcpdump) and RunTCPFlow (invokes tcpflow) allow local users to sniff network packets, exposing partial confidentiality. Root cause is the presence of setuid wrappers enabling packet capture. ...

2.1CVSS6.8AI score0.00409EPSS
Exploits1References1Affected Software2
cve
cve
added 2003/08/14 4:0 a.m.64 views

CVE-2003-0671

CVE-2003-0671 affects tcpflow and is described as a format string vulnerability that, when tcpflow runs in a setuid context (notably the RunTCPFlow program used by Sustworks IPNetSentryX and IPNetMonitorX), allows local users to execute arbitrary code via the device name argument. The available d...

7.2CVSS7.6AI score0.0055EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2003/08/14 4:0 a.m.22 views

CVE-2003-0671

Format string vulnerability in tcpflow, when used in a setuid context, allows local users to execute arbitrary code via the device name argument, as demonstrated in Sustworks IPNetSentryX and IPNetMonitorX the setuid program RunTCPFlow...

7.2AI score0.0055EPSS
Exploits1References2
securityvulns
securityvulns
added 2003/08/08 12:0 a.m.41 views

Sustworks Unauthorized Network Monitoring and tcpflow format string attack

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Sustworks Unauthorized Network Monitoring and tcpflow format string attack Release Date: 08/07/2003 Application: IPNetMonitorX and IPNetSentryX Platform: Mac OS X Severity: Local users can...

1.7AI score
Exploits0
Rows per page
Query Builder