Vulnerabilities > LBL > Tcpdump > 3.6.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-06-10 | CVE-2005-1267 | Denial Of Service vulnerability in tcpdump BGP Decoding Routines The bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the decode_prefix4 function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted BGP packet. | 5.0 |
2004-02-17 | CVE-2004-0055 | Denial Of Service vulnerability in TCPDump Malformed RADIUS Packet The print_attr_string function in print-radius.c for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a RADIUS attribute with a large length value. | 5.0 |
2004-02-17 | CVE-2003-1029 | Unspecified vulnerability in LBL Tcpdump The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet with invalid data to UDP port 1701, which causes l2tp_avp_print to use a bad length value when calling print_octets. | 5.0 |
2003-03-31 | CVE-2003-0145 | Denial-Of-Service vulnerability in tcpdump Unknown vulnerability in tcpdump before 3.7.2 related to an inability to "Handle unknown RADIUS attributes properly," allows remote attackers to cause a denial of service (infinite loop), a different vulnerability than CAN-2003-0093. | 5.0 |
2003-03-07 | CVE-2003-0108 | Denial Of Service vulnerability in TCPDump Malformed ISAKMP Packet isakmp_sub_print in tcpdump 3.6 through 3.7.1 allows remote attackers to cause a denial of service (CPU consumption) via a certain malformed ISAKMP packet to UDP port 500, which causes tcpdump to enter an infinite loop. | 5.0 |
2003-03-03 | CVE-2003-0093 | Denial-Of-Service vulnerability in tcpdump The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service (crash) via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop. | 5.0 |
2001-07-17 | CVE-2001-1279 | Buffer Overflow vulnerability in LBL Tcpdump 3.6.2 Buffer overflow in print-rx.c of tcpdump 3.x (probably 3.6x) allows remote attackers to cause a denial of service and possibly execute arbitrary code via AFS RPC packets with invalid lengths that trigger an integer signedness error, a different vulnerability than CVE-2000-1026. | 7.5 |