6 matches found
CVE-2014-8768
CVE-2014-8768 affects tcpdump 4.5.0–4.6.2 when run in verbose mode, allowing a remote attacker to trigger a denial of service (segmentation fault/crash) via a crafted Geonet frame length. Multiple connected advisories group this with other tcpdump/CVE issues. The repackaged advisories indicate fi...
CVE-2014-8769
CVE-2014-8769 affects tcpdump versions 3.8 through 4.6.2, where a crafted AODV packet can trigger out-of-bounds memory access, potentially leaking memory or causing a denial of service (packet loss or segmentation fault). Publicly documented impacts are memory disclosures and DoS. Remediation in ...
CVE-2014-8767
CVE-2014-8767 affects tcpdump, specifically the olsr_print path in tcpdump 3.9.6 through 4.6.2. The vulnerability is an integer underflow triggered by a crafted OLSR frame length value in verbose mode, which can cause a denial of service (crash). The Connected documents reference the same CIM and...
CVE-2014-9140
CVE-2014-9140 is a buffer overflow in the ppp_hdlc function (print-ppp.c) of tcpdump 4.6.2 and earlier. This allows remote attackers to crash tcpdump via a crafted PPP packet, causing a denial of service. Affected: tcpdump 4.6.2 and earlier. Root cause: vulnerability in PPP dissection logic. No r...
CVE-2003-0989
CVE-2003-0989 affects tcpdump prior to 3.8.1, allowing remote attackers to cause a denial of service via certain ISAKMP packets (infinite loop). The issue is cited alongside related CANs (2003-1029, 2004-0057) in Debian/OpenVAS advisories and multiple vendor notes, indicating a class of ISAKMP pa...
CVE-2003-0194
tcpdump (affected up to versions prior to the Red Hat patches) had a bug where privileges were not dropped to user 'pcap' at startup due to a compilation error, causing it to run as root unless the -U flag was used. Red Hat advisories RHSA-2003:151 and related NASL/redhat entries describe updated...