CVE-2002-0380

Name of the Vulnerable Software and Affected Versions tcpdump versions 3.6.2 and earlier libpcap version 0.6.2 tcpdump version 3.6.3 arpwatch version 2.1a11

Description The issue concerns multiple vulnerabilities in certain packages of the Red Hat Linux operating system, which can be exploited remotely to compromise the confidentiality, integrity, and availability of protected information. Specifically, a buffer overflow in tcpdump versions 3.6.2 and earlier can allow remote attackers to cause a denial of service and possibly execute arbitrary code via an NFS packet.

Recommendations For tcpdump versions 3.6.2 and earlier, consider upgrading to a version later than 3.6.2 to mitigate the risk of buffer overflow exploitation. For libpcap version 0.6.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For tcpdump version 3.6.3, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For arpwatch version 2.1a11, at the moment, there is no information about a newer version that contains a fix for this vulnerability.