Vulnerabilities > Tcpdump > Tcpdump > 3.7.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-01-28 | CVE-2016-7924 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:oam_print(). | 9.8 |
2017-01-28 | CVE-2016-7923 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump The ARP parser in tcpdump before 4.9.0 has a buffer overflow in print-arp.c:arp_print(). | 9.8 |
2017-01-28 | CVE-2016-7922 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump The AH parser in tcpdump before 4.9.0 has a buffer overflow in print-ah.c:ah_print(). | 9.8 |
2015-03-24 | CVE-2015-2155 | Denial of Service vulnerability in tcpdump The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors. | 7.5 |
2015-03-24 | CVE-2015-2154 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value. | 5.0 |
2015-03-24 | CVE-2015-2153 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU). | 5.0 |
2015-03-24 | CVE-2015-0261 | Numeric Errors vulnerability in Tcpdump Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value. | 7.5 |
2007-07-16 | CVE-2007-3798 | Unchecked Return Value vulnerability in multiple products Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value. | 9.8 |
2007-03-02 | CVE-2007-1218 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Tcpdump Off-by-one buffer overflow in the parse_elements function in the 802.11 printer code (print-802_11.c) for tcpdump 3.9.5 and earlier allows remote attackers to cause a denial of service (crash) via a crafted 802.11 frame. | 6.8 |