// For flags

CVE-2005-1267

Tcpdump - bgp_update_print Remote Denial of Service

Severity Score

5.0
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the decode_prefix4 function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted BGP packet.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2005-04-25 CVE Reserved
  • 2005-06-09 First Exploit
  • 2005-06-10 CVE Published
  • 2024-05-27 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.4
Search vendor "Lbl" for product "Tcpdump" and version "3.4"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.4a6
Search vendor "Lbl" for product "Tcpdump" and version "3.4a6"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.5
Search vendor "Lbl" for product "Tcpdump" and version "3.5"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.5.2
Search vendor "Lbl" for product "Tcpdump" and version "3.5.2"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.5_alpha
Search vendor "Lbl" for product "Tcpdump" and version "3.5_alpha"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.6.2
Search vendor "Lbl" for product "Tcpdump" and version "3.6.2"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.6.3
Search vendor "Lbl" for product "Tcpdump" and version "3.6.3"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.7
Search vendor "Lbl" for product "Tcpdump" and version "3.7"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.7.1
Search vendor "Lbl" for product "Tcpdump" and version "3.7.1"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.7.2
Search vendor "Lbl" for product "Tcpdump" and version "3.7.2"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.8.1
Search vendor "Lbl" for product "Tcpdump" and version "3.8.1"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.8.2
Search vendor "Lbl" for product "Tcpdump" and version "3.8.2"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.8.3
Search vendor "Lbl" for product "Tcpdump" and version "3.8.3"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.9
Search vendor "Lbl" for product "Tcpdump" and version "3.9"
-
Affected
Lbl
Search vendor "Lbl"
Tcpdump
Search vendor "Lbl" for product "Tcpdump"
3.9.1
Search vendor "Lbl" for product "Tcpdump" and version "3.9.1"
-
Affected
Gentoo
Search vendor "Gentoo"
Linux
Search vendor "Gentoo" for product "Linux"
*-
Affected
Mandrakesoft
Search vendor "Mandrakesoft"
Mandrake Linux
Search vendor "Mandrakesoft" for product "Mandrake Linux"
10.1
Search vendor "Mandrakesoft" for product "Mandrake Linux" and version "10.1"
-
Affected
Mandrakesoft
Search vendor "Mandrakesoft"
Mandrake Linux
Search vendor "Mandrakesoft" for product "Mandrake Linux"
10.1
Search vendor "Mandrakesoft" for product "Mandrake Linux" and version "10.1"
x86_64
Affected
Mandrakesoft
Search vendor "Mandrakesoft"
Mandrake Linux
Search vendor "Mandrakesoft" for product "Mandrake Linux"
10.2
Search vendor "Mandrakesoft" for product "Mandrake Linux" and version "10.2"
-
Affected
Mandrakesoft
Search vendor "Mandrakesoft"
Mandrake Linux
Search vendor "Mandrakesoft" for product "Mandrake Linux"
10.2
Search vendor "Mandrakesoft" for product "Mandrake Linux" and version "10.2"
x86_64
Affected
Redhat
Search vendor "Redhat"
Fedora Core
Search vendor "Redhat" for product "Fedora Core"
core_3.0
Search vendor "Redhat" for product "Fedora Core" and version "core_3.0"
-
Affected
Redhat
Search vendor "Redhat"
Fedora Core
Search vendor "Redhat" for product "Fedora Core"
core_4.0
Search vendor "Redhat" for product "Fedora Core" and version "core_4.0"
-
Affected
Trustix
Search vendor "Trustix"
Secure Linux
Search vendor "Trustix" for product "Secure Linux"
2.0
Search vendor "Trustix" for product "Secure Linux" and version "2.0"
-
Affected
Trustix
Search vendor "Trustix"
Secure Linux
Search vendor "Trustix" for product "Secure Linux"
2.1
Search vendor "Trustix" for product "Secure Linux" and version "2.1"
-
Affected
Trustix
Search vendor "Trustix"
Secure Linux
Search vendor "Trustix" for product "Secure Linux"
2.2
Search vendor "Trustix" for product "Secure Linux" and version "2.2"
-
Affected