Linux Distros Unpatched Vulnerability : CVE-2017-5484

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sigprint. CVE-2017-5484 Note that Nessus relies on the presence of the package as...

Slackware: Security Advisory (SSA:2017-041-04)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Photon OS 1.0: Tcpdump PHSA-2017-0004 (deprecated)

An update of tcpdump packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0004. The text itself is copyright C VMware, Inc...

F5 Networks BIG-IP : tcpdump vulnerabilities (K31997425)

CVE-2017-5482 The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933print, a different vulnerability than CVE-2016-8575. CVE-2017-5483 The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1parse. CVE-2017-5484 The ATM parser in tcpdump before...

EulerOS 2.0 SP2 : tcpdump (EulerOS-SA-2017-1180)

According to the versions of the tcpdump package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker...

EulerOS 2.0 SP1 : tcpdump (EulerOS-SA-2017-1179)

According to the versions of the tcpdump package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker...

Scientific Linux Security Update : tcpdump on SL7.x x86_64 (20170801)

The following packages have been upgraded to a later upstream version: tcpdump 4.9.0. Security Fixes : - Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send special...

RedHat Update for tcpdump RHSA-2017:1871-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES11 Security Update : tcpdump (SUSE-SU-2017:0656-1)

This update for tcpdump fixes the following issues: Security issues fixed bsc1020940 : - CVE-2016-7922: Corrected buffer overflow in AH parser print-ah.c:ahprint. - CVE-2016-7923: Corrected buffer overflow in ARP parser print-arp.c:arpprint. - CVE-2016-7925: Corrected buffer overflow in compresse...

Internet Bug Bounty: CVE-2017-5484 The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print()

Reported to the project maintainers in 2016. The function sigprint did receive a correct caplen parameter value but didn't use it correctly which could result in a read outside of buffer. Fixed by https://github.com/the-tcpdump-group/tcpdump/commit/5d214e36eed3565fbdc0f9b527bbc33a6bb63972...

CVE-2017-5484

CVE-2017-5484 affects tcpdump prior to 4.9.0, specifically the ATM parser in print-atm.c:sig_print(). The vulnerability is a buffer overflow that could allow a remote attacker to execute arbitrary code or crash the application by sending overly long input. Affected software is tcpdump (pre-4.9.0)...

CVE-2017-5484

The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sigprint...