Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2017-01-28 CVE-2017-5204 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print().
network
low complexity
tcpdump debian redhat CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5203 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().
network
low complexity
tcpdump debian redhat CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5202 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
network
low complexity
tcpdump debian redhat CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2016-8575 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482.
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2016-8574 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2016-7993 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
A bug in util-print.c:relts_print() in tcpdump before 4.9.0 could cause a buffer overflow in multiple protocol parsers (DNS, DVMRP, HSRP, IGMP, lightweight resolver protocol, PIM).
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2016-7992 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The Classical IP over ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-cip.c:cip_if_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2016-7986 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The GeoNetworking parser in tcpdump before 4.9.0 has a buffer overflow in print-geonet.c, multiple functions.
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2016-7985 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The CALM FAST parser in tcpdump before 4.9.0 has a buffer overflow in print-calm-fast.c:calm_fast_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2016-7984 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The TFTP parser in tcpdump before 4.9.0 has a buffer overflow in print-tftp.c:tftp_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8