Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Tcpdump
(Tcpdump)| Repositories | https://github.com/the-tcpdump-group/tcpdump |
| #Vulnerabilities | 172 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-11-04 | CVE-2020-8037 | The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory. | Mac_os_x, Macos, Debian_linux, Fedora, Tcpdump | 7.5 | ||
| 2020-11-04 | CVE-2020-8036 | The tok2strbuf() function in tcpdump 4.10.0-PRE-GIT was used by the SOME/IP dissector in an unsafe way. | Tcpdump | 7.5 | ||
| 2023-04-07 | CVE-2023-1801 | The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds write when decoding a crafted network packet. | Tcpdump | 6.5 | ||
| 2007-07-16 | CVE-2007-3798 | Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value. | Mac_os_x, Mac_os_x_server, Ubuntu_linux, Debian_linux, Freebsd, Slackware, Tcpdump | 9.8 | ||
| 2004-05-04 | CVE-2004-0184 | Integer underflow in the isakmp_id_print for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with an Identification payload with a length that becomes less than 8 during byte order conversion, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite. | Tcpdump | N/A | ||
| 2004-05-04 | CVE-2004-0183 | TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite. | Tcpdump | N/A | ||
| 2017-01-28 | CVE-2016-7922 | The AH parser in tcpdump before 4.9.0 has a buffer overflow in print-ah.c:ah_print(). | Tcpdump | 9.8 | ||
| 2017-01-28 | CVE-2016-7923 | The ARP parser in tcpdump before 4.9.0 has a buffer overflow in print-arp.c:arp_print(). | Tcpdump | 9.8 | ||
| 2017-01-28 | CVE-2016-7924 | The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:oam_print(). | Tcpdump | 9.8 | ||
| 2017-01-28 | CVE-2016-7925 | The compressed SLIP parser in tcpdump before 4.9.0 has a buffer overflow in print-sl.c:sl_if_print(). | Tcpdump | 9.8 |