CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2017/09/14 6:29 a.m.•10 views

CVE-2017-12999

The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isisprint...

9.8CVSS9.6AI score

Cvelist•added 2017/09/14 6:0 a.m.•13 views

CVE-2017-12999

The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isisprint...

9.5AI score0.01117EPSS

Vulnrichment•added 2017/09/14 6:0 a.m.•0 views

CVE-2017-13055

The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isisprintisreachsubtlv...

7.1AI score0.0136EPSS

Cvelist•added 2017/09/14 6:0 a.m.•16 views

CVE-2017-13026

The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c, several functions...

9.5AI score0.0136EPSS

CVE•added 2017/09/14 6:0 a.m.•122 views

CVE-2017-12998

tcpdump before 4.9.2 has a buffer over-read in the IS-IS parser (print-isoclns.c:isis_print_extd_ip_reach) that could allow a remote attacker to obtain sensitive information; upgrade to tcpdump 4.9.2 or later to fix.

9.8CVSS9.3AI score0.01117EPSS

CVE•added 2017/09/14 6:0 a.m.•118 views

CVE-2017-13026

CVE-2017-13026 affects the tcpdump ISO IS-IS parser. The vulnerability is a buffer over-read in print-isoclns.c, present in tcpdump versions prior to 4.9.2. Upgrading to tcpdump 4.9.2 (or later) is the remediation. Public sources (Debian/CNVD/etc.) confirm the issue and the fix timeline; exploita...

9.8CVSS9.3AI score0.0136EPSS

CVE•added 2017/09/14 6:0 a.m.•123 views

CVE-2017-12999

tcpdump contains a buffer over-read in the IS-IS parser (print-isoclns.c:isis_print) affecting the tcpdump project; CVE-2017-12999 is documented in multiple advisories. Publicly disclosed details show the issue exists in tcpdump prior to version 4.9.2 and has been addressed by upgrading to tcpdum...

9.8CVSS9.3AI score0.01117EPSS

CVE•added 2017/09/14 6:0 a.m.•111 views

CVE-2017-13055

CVE-2017-13055 affects tcpdump prior to 4.9.2. Root cause: a buffer over-read in the ISO IS-IS parser (print-isoclns.c:isis_print_is_reach_subtlv). Impact: potential information disclosure and partial/total memory exposure as indicated by CVSS 3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (base 9.8, CR...

9.8CVSS9.3AI score0.0136EPSS

RedhatCVE•added 2017/09/14 4:53 a.m.•20 views

CVE-2017-13035

The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isisprintid...

9.8CVSS3.4AI score0.00604EPSS

RedhatCVE•added 2017/09/14 4:51 a.m.•20 views

CVE-2017-12998

The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isisprintextdipreach...

9.8CVSS3.5AI score0.01117EPSS

RedhatCVE•added 2017/09/14 4:49 a.m.•30 views

CVE-2017-13026

The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c, several functions...

9.8CVSS4.2AI score0.0136EPSS

CNVD•added 2017/09/14 12:0 a.m.•1 views

Tcpdump IS-IS Parser Buffer Overflow Vulnerability

Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tool allows users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.IS-IS parser is one of the routing protocol parsers. A buffer overflow...

9.8CVSS9.4AI score0.01117EPSS