CVE-2018-16451

Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.3

Description The issue is related to buffer over-reads in the SMB parser of tcpdump, specifically in the print trans() function in print-smb.c, when handling MAILSLOTBROWSE and PIPELANMAN. This can potentially allow a remote attacker to cause a denial of service. Additionally, there are heap-based buffer over-reads related to aoe print in print-aoe.c and lookup emem in addrtoname.c.

Recommendations For versions prior to 4.9.3, update to version 4.9.3 or later to resolve the issue. As a temporary workaround, consider restricting the use of the SMB parser or disabling the print trans() function until a patch is available. Restrict access to the affected modules, such as print-smb.c, print-aoe.c, and addrtoname.c, to minimize the risk of exploitation. Avoid using the aoe print and lookup emem functions in the affected API endpoints until the issue is resolved.