TcpdumpCVEs & Vulnerabilities

181 CVEs affecting Tcpdump products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

tcpdump 172libpcap 8tcpslice 1
CVE-2016-8574CRITICAL

The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7993CRITICAL

A bug in util-print.c:relts_print() in tcpdump before 4.9.0 could cause a buffer overflow in multiple protocol parsers (DNS, DVMRP, HSRP, IGMP, lightweight resolver protocol, PIM).

28 Jan 2017
9.8
CVSS
CVE-2016-7992CRITICAL

The Classical IP over ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-cip.c:cip_if_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7986CRITICAL

The GeoNetworking parser in tcpdump before 4.9.0 has a buffer overflow in print-geonet.c, multiple functions.

28 Jan 2017
9.8
CVSS
CVE-2016-7985CRITICAL

The CALM FAST parser in tcpdump before 4.9.0 has a buffer overflow in print-calm-fast.c:calm_fast_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7984CRITICAL

The TFTP parser in tcpdump before 4.9.0 has a buffer overflow in print-tftp.c:tftp_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7983CRITICAL

The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7975CRITICAL

The TCP parser in tcpdump before 4.9.0 has a buffer overflow in print-tcp.c:tcp_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7974CRITICAL

The IP parser in tcpdump before 4.9.0 has a buffer overflow in print-ip.c, multiple functions.

28 Jan 2017
9.8
CVSS
CVE-2016-7973CRITICAL

The AppleTalk parser in tcpdump before 4.9.0 has a buffer overflow in print-atalk.c, multiple functions.

28 Jan 2017
9.8
CVSS
CVE-2016-7940CRITICAL

The STP parser in tcpdump before 4.9.0 has a buffer overflow in print-stp.c, multiple functions.

28 Jan 2017
9.8
CVSS
CVE-2016-7939CRITICAL

The GRE parser in tcpdump before 4.9.0 has a buffer overflow in print-gre.c, multiple functions.

28 Jan 2017
9.8
CVSS
CVE-2016-7938CRITICAL

The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in print-zeromq.c:zmtp1_print_frame().

28 Jan 2017
9.8
CVSS
CVE-2016-7937CRITICAL

The VAT parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:vat_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7936CRITICAL

The UDP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:udp_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7935CRITICAL

The RTP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:rtp_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7934CRITICAL

The RTCP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:rtcp_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7933CRITICAL

The PPP parser in tcpdump before 4.9.0 has a buffer overflow in print-ppp.c:ppp_hdlc_if_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7932CRITICAL

The PIM parser in tcpdump before 4.9.0 has a buffer overflow in print-pim.c:pimv2_check_checksum().

28 Jan 2017
9.8
CVSS
CVE-2016-7931CRITICAL

The MPLS parser in tcpdump before 4.9.0 has a buffer overflow in print-mpls.c:mpls_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7930CRITICAL

The LLC/SNAP parser in tcpdump before 4.9.0 has a buffer overflow in print-llc.c:llc_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7929CRITICAL

The Juniper PPPoE ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-juniper.c:juniper_parse_header().

28 Jan 2017
9.8
CVSS
CVE-2016-7928CRITICAL

The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcomp_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7927CRITICAL

The IEEE 802.11 parser in tcpdump before 4.9.0 has a buffer overflow in print-802_11.c:ieee802_11_radio_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7926CRITICAL

The Ethernet parser in tcpdump before 4.9.0 has a buffer overflow in print-ether.c:ethertype_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7925CRITICAL

The compressed SLIP parser in tcpdump before 4.9.0 has a buffer overflow in print-sl.c:sl_if_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7924CRITICAL

The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:oam_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7923CRITICAL

The ARP parser in tcpdump before 4.9.0 has a buffer overflow in print-arp.c:arp_print().

28 Jan 2017
9.8
CVSS
CVE-2016-7922CRITICAL

The AH parser in tcpdump before 4.9.0 has a buffer overflow in print-ah.c:ah_print().

28 Jan 2017
9.8
CVSS
CVE-2015-2155HIGH

The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

24 Mar 2015
7.5
CVSS
CVE-2015-2154MEDIUM

The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.

24 Mar 2015
5.0
CVSS
CVE-2015-2153MEDIUMpoc

The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).

24 Mar 2015
5.0
CVSS
CVE-2015-0261HIGH

Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.

24 Mar 2015
7.5
CVSS
CVE-2007-3798CRITICALpoc

Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value.

17 Jul 2007
9.8
CVSS
CVE-2007-1218MEDIUM

Off-by-one buffer overflow in the parse_elements function in the 802.11 printer code (print-802_11.c) for tcpdump 3.9.5 and earlier allows remote attackers to cause a denial of service (crash) via a crafted 802.11 frame. NOTE: this was originally referred to as heap-based, but it might be stack-based.

3 Mar 2007
6.8
CVSS
CVE-2004-0183MEDIUM

TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.

4 May 2004
5.0
CVSS
CVE-2004-0184MEDIUMpoc

Integer underflow in the isakmp_id_print for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with an Identification payload with a length that becomes less than 8 during byte order conversion, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite.

4 May 2004
5.0
CVSS
← PrevPage 4 / 4Next →