CVE-2016-7936

Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.0

Description The issue is related to a buffer overflow in the UDP parser and the ISO CLNS parser. Specifically, the udp print() function in print-udp.c and the clnp print() function in print-isoclns.c are affected. This is due to improper bounds checking, which can be exploited by sending an overly long argument, potentially allowing a remote attacker to execute arbitrary code on the system or cause the application to crash.

Recommendations For versions prior to 4.9.0, update to version 4.9.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the udp print() and clnp print() functions until a patch is available. Avoid using the affected functions in the print-udp.c and print-isoclns.c files until the issue is resolved.