Vulnerabilities > Tcpdump > Critical

DATE CVE VULNERABILITY TITLE RISK
2019-10-03 CVE-2018-10105 Improper Input Validation vulnerability in Tcpdump
tcpdump before 4.9.3 mishandles the printing of SMB data (issue 2 of 2).
network
low complexity
tcpdump CWE-20
critical
 9.8
9.8
2019-10-03 CVE-2018-10103 Improper Input Validation vulnerability in Tcpdump
tcpdump before 4.9.3 mishandles the printing of SMB data (issue 1 of 2).
network
low complexity
tcpdump CWE-20
critical
 9.8
9.8
2017-10-20 CVE-2011-1935 Unspecified vulnerability in Tcpdump Libpcap 1.1.1/1.2.0
pcap-linux.c in libpcap 1.1.1 before commit ea9432fabdf4b33cbc76d9437200e028f1c47c93 when snaplen is set may truncate packets, which might allow remote attackers to send arbitrary data while avoiding detection via crafted packets.
network
low complexity
tcpdump
critical
 9.8
9.8
2017-01-28 CVE-2017-5486 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5485 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookup_nsap().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5484 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5483 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1_parse().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5482 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2016-8575.
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5342 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
In tcpdump before 4.9.0, a bug in multiple protocol parsers (Geneve, GRE, NSH, OTV, VXLAN and VXLAN GPE) could cause a buffer overflow in print-ether.c:ether_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5341 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The OTV parser in tcpdump before 4.9.0 has a buffer overflow in print-otv.c:otv_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8