PT-2017-9440 · Tcpdump+6 · Tcpdump+6
Publicado
2017-01-27
·
Atualizado
2024-06-15
·
CVE-2016-7974
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
tcpdump versions prior to 4.9.0
Description
The issue is related to a buffer overflow in the IP parser and the ISO CLNS parser in the
clnp print() function. This is caused by improper bounds checking, allowing a remote attacker to overflow a buffer by sending an overly long argument. As a result, the attacker could execute arbitrary code on the system or cause the application to crash.Recommendations
For versions prior to 4.9.0, update to version 4.9.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the
print-isoclns.c module and the clnp print() function to minimize the risk of exploitation. Avoid using the affected tcpdump functionality until the issue is resolved.Exploit
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Alt Linux
Centos
Ibm Aix
Red Hat
Suse
Ubuntu
Tcpdump