5 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-13038
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handlemlppp. CVE-2017-13038 Note that Nessus relies on the presence of the package ...
Internet Bug Bounty: CVE-2017-13038 The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp().
Reported to the devs on 11 June 2017. Tcpdump 4.9.2 released on 8 September 2017. Patch: https://github.com/the-tcpdump-group/tcpdump/commit/7335163a6ef82d46ff18f3e6099a157747241629 The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handlemlppp. ./tcpdump -nr test003...
CVE-2017-13038
tcpdump CVE-2017-13038: A buffer over-read in the PPP parser (print-ppp.c handle_mlppp) affects tcpdump versions before 4.9.2. The issue can enable information disclosure and potential crash. Affected component: PPP parser in tcpdump; root cause: out-of-bounds read in PPP handling. Impact per CVS...
CVE-2017-13038
The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handlemlppp...
Debian: Security Advisory (DSA-3971-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...