Page 3 of 17 results (0.004 seconds)

CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 0

The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash). • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-050.0.txt http://marc.info/?l=bugtraq&m=104032975103398&w=2 http://www.debian.org/security/2002/dsa-206 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:027 http://www.redhat.com/support/errata/RHSA-2003-032.html http://www.redhat.com/support/errata/RHSA-2003-033.html http://www.redhat.com/support/errata/RHSA-2003-214.html http://www.securityfocus.com/bid/6213 http://www.tcpdump.org/lists/w •

CVSS: 7.5EPSS: 8%CPEs: 1EXPL: 0

Buffer overflow in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via an NFS packet. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-025.0.txt http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000491 http://marc.info/?l=bugtraq&m=102339541014226&w=2 http://marc.info/?l=bugtraq&m=102650721503642&w=2 http://online.securityfocus.com/advisories/4169 http://www.debian.org/security/2003/dsa-255 http://www.iss.net/security_center/static/9216.php http://www.redhat.com/support/errata/RHSA-2002-094.html http://www.redhat.com/support/errata •

CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 2

ip_print procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet with a zero length header, which causes an infinite loop and core dump when tcpdump prints the packet. • https://www.exploit-db.com/exploits/19251 http://marc.info/?l=bugtraq&m=92955903802773&w=2 http://marc.info/?l=bugtraq&m=92963447601748&w=2 http://marc.info/?l=bugtraq&m=92989907627051&w=2 http://www.securityfocus.com/bid/313 •

CVSS: 7.5EPSS: 19%CPEs: 1EXPL: 0

Buffer overflow in print-rx.c of tcpdump 3.x (probably 3.6x) allows remote attackers to cause a denial of service and possibly execute arbitrary code via AFS RPC packets with invalid lengths that trigger an integer signedness error, a different vulnerability than CVE-2000-1026. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-025.0.txt ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:48.tcpdump.asc http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000480 http://www.iss.net/security_center/static/7006.php http://www.kb.cert.org/vuls/id/797201 http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-032.php http://www.redhat.com/support/errata/RHSA-2001-089.html http://www.securityfocus.com/bid/3065 •

CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 5

Heap overflow in savestr function in LBNL traceroute 1.4a5 and earlier allows a local user to execute arbitrary commands via the -g option. • https://www.exploit-db.com/exploits/20250 https://www.exploit-db.com/exploits/20251 https://www.exploit-db.com/exploits/20252 https://www.exploit-db.com/exploits/178 http://archives.neohapsis.com/archives/bugtraq/2000-09/0344.html http://archives.neohapsis.com/archives/bugtraq/2000-09/0357.html http://www.calderasystems.com/support/security/advisories/CSSA-2000-034.0.txt http://www.debian.org/security/2000/20001013 http://www.linux-mandrake.com/en/security/MDKSA-2000-053. •