Vulnerabilities > Tcpdump > Tcpdump > 3.8.1

DATE CVE VULNERABILITY TITLE RISK
2017-09-14 CVE-2017-12894 Out-of-bounds Read vulnerability in Tcpdump
Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in addrtoname.c:lookup_bytestring().
network
low complexity
tcpdump CWE-125
7.5
7.5
2017-09-14 CVE-2017-12893 Out-of-bounds Read vulnerability in Tcpdump
The SMB/CIFS parser in tcpdump before 4.9.2 has a buffer over-read in smbutil.c:name_len().
network
low complexity
tcpdump CWE-125
7.5
7.5
2017-01-28 CVE-2017-5486 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5485 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookup_nsap().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5484 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5483 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1_parse().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5482 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2016-8575.
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5342 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
In tcpdump before 4.9.0, a bug in multiple protocol parsers (Geneve, GRE, NSH, OTV, VXLAN and VXLAN GPE) could cause a buffer overflow in print-ether.c:ether_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5341 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tcpdump
The OTV parser in tcpdump before 4.9.0 has a buffer overflow in print-otv.c:otv_print().
network
low complexity
tcpdump CWE-119
critical
 9.8
9.8
2017-01-28 CVE-2017-5205 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
The ISAKMP parser in tcpdump before 4.9.0 has a buffer overflow in print-isakmp.c:ikev2_e_print().
network
low complexity
tcpdump debian redhat CWE-119
critical
 9.8
9.8