86 matches found
tcpdump: Buffer over-read in print-bootp.c:bootp_print() in BOOTP parser
The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootpprint...
CVE-2017-10947
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.2.1.6871. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the prin...
CVE-2017-10947
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.2.1.6871. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the prin...
PT-2017-3911
Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.3 Description The issue is related to a buffer over-read in the LDP parser of the tcpdump utility, specifically in the ldp tlv print function located in print-ldp.c. This can be exploited by a remote attacker to...
DEBIAN-CVE-2017-13054
The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldpprivate8023print...
DEBIAN-CVE-2017-13025
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobilityoptprint...
DEBIAN-CVE-2017-12997
The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c:lldpprivate8021print...
CVE-2017-13020
The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtpprint...
CVE-2017-12985
The IPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-ip6.c:ip6print...
CVE-2017-13016
The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esisprint...
Tcpdump IPv6 routing header parser buffer overflow vulnerability
Tcpdump is a set of sniffing tools developed by the Tcpdump team that run under the command line. The tool allows users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.IPv6 routing header parser is one of the IPv6 routing header parser...
Tcpdump Pv6 mobility parser buffer overflow vulnerability
tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.IPv6 mobility parser is one of the IPv6 mobility parsers. A buffer...
Tcpdump DNS Resolver Source Denial of Service Vulnerability
Tcpdump is a set of sniffing tools developed by the Tcpdump team that run at the command line. The tools allow users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.DNS parser is one of the Domain Name System DNS resolvers. A denial of...
UBUNTU-CVE-2017-13054
The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldpprivate8023print...
UBUNTU-CVE-2017-13028
The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootpprint...
UBUNTU-CVE-2017-13044
The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv4print...
UBUNTU-CVE-2017-13000
The IEEE 802.15.4 parser in tcpdump before 4.9.2 has a buffer over-read in print-802154.c:ieee802154ifprint...
openvswitch: Invalid processing of a malicious OpenFlow role status message
While parsing an OpenFlow role status message Open vSwitch OvS, a call to the abort function for undefined role status reasons in the function 'ofpprintrolestatusmessage' in 'lib/ofp-print.c' could be misused for a remote denial of service attack by a malicious switch...
PT-2017-12890
Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.2 Description The issue is related to a buffer over-read in the ISO ES-IS parser, specifically in the esis print function within the print-isoclns.c file. Recommendations For versions prior to 4.9.2, update to...
PT-2017-12891
Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.2 Description The issue is related to a buffer over-read in the RSVP parser, specifically in the rsvp obj print function within print-rsvp.c. Recommendations For versions prior to 4.9.2, update to version 4.9.2 or...