Tcpdump : Security Vulnerabilities, CVEs, Published In 2019

CVE-2018-10103

tcpdump before 4.9.3 mishandles the printing of SMB data (issue 1 of 2).
Max CVSS
9.8
EPSS Score
1.25%
Published
2019-10-03
Updated
2019-10-11

CVE-2018-10105

tcpdump before 4.9.3 mishandles the printing of SMB data (issue 2 of 2).
Max CVSS
9.8
EPSS Score
1.25%
Published
2019-10-03
Updated
2019-10-11

CVE-2018-16301

The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the file name as the value of the -F command-line argument of tcpdump.
Max CVSS
7.8
EPSS Score
0.10%
Published
2019-10-03
Updated
2022-02-14

CVE-2018-14461

The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print().
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2020-01-20

CVE-2018-14462

The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2023-08-16

CVE-2018-14463

The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 2, a different vulnerability than CVE-2019-15167.
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2023-08-16

CVE-2018-14464

The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs().
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2020-01-20

CVE-2018-14465

The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print().
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2023-08-16

CVE-2018-14466

The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rx_cache_find() and rx_cache_insert().
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2020-01-20

CVE-2018-14467

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_MP).
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2020-01-20

CVE-2018-14468

The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2023-08-16

CVE-2018-14469

The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1_n_print().
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2023-08-16

CVE-2018-14470

The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c:babel_print_v2().
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2020-01-20

CVE-2018-14880

The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr().
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2023-08-16

CVE-2018-14881

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_RESTART).
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2020-01-20

CVE-2018-14882

The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c.
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2023-08-16

CVE-2018-16227

The IEEE 802.11 parser in tcpdump before 4.9.3 has a buffer over-read in print-802_11.c for the Mesh Flags subfield.
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2020-01-20

CVE-2018-16228

The HNCP parser in tcpdump before 4.9.3 has a buffer over-read in print-hncp.c:print_prefix().
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2020-01-20

CVE-2018-16229

The DCCP parser in tcpdump before 4.9.3 has a buffer over-read in print-dccp.c:dccp_print_option().
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2023-08-16

CVE-2018-16230

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_attr_print() (MP_REACH_NLRI).
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2020-01-20

CVE-2018-16300

The BGP parser in tcpdump before 4.9.3 allows stack consumption in print-bgp.c:bgp_attr_print() because of unlimited recursion.
Max CVSS
7.5
EPSS Score
0.79%
Published
2019-10-03
Updated
2019-10-11

CVE-2018-16451

The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN.
Max CVSS
7.5
EPSS Score
0.33%
Published
2019-10-03
Updated
2020-01-20

CVE-2018-16452

The SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smb_fdata() via recursion.
Max CVSS
7.5
EPSS Score
0.79%
Published
2019-10-03
Updated
2019-10-11

CVE-2019-15163

rpcapd/daemon.c in libpcap before 1.9.1 allows attackers to cause a denial of service (NULL pointer dereference and daemon crash) if a crypt() call fails.
Max CVSS
7.5
EPSS Score
2.42%
Published
2019-10-03
Updated
2019-10-27

CVE-2019-15166

lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.
Max CVSS
7.5
EPSS Score
0.52%
Published
2019-10-03
Updated
2022-04-13
31 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close