CVE-2016-7925

Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.0

Description The issue is related to a buffer overflow in the compressed SLIP parser and the ISO CLNS parser. Specifically, the buffer overflow occurs in the sl if print() function in print-sl.c and the clnp print() function in print-isoclns.c. This can be exploited by sending an overly long argument, potentially allowing a remote attacker to execute arbitrary code on the system or cause the application to crash.

Recommendations For versions prior to 4.9.0, update to version 4.9.0 or later to resolve the issue. As a temporary workaround, consider disabling the sl if print() and clnp print() functions until a patch is available. Restrict access to the vulnerable print-sl.c and print-isoclns.c modules to minimize the risk of exploitation.