CVE-2007-3798

Name of the Vulnerable Software and Affected Versions: tcpdump versions 3.9.6 and earlier tcpdump versions prior to 3.9.5-r3

Description: The issue is related to an integer overflow in the BGP dissector in tcpdump, which allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet. This is due to an unchecked return value in print-bgp.c. The exploitation of this issue can lead to a violation of confidentiality, integrity, and availability of protected information and can be performed remotely.

Recommendations: For tcpdump versions 3.9.6 and earlier, update to a version later than 3.9.6. For tcpdump versions prior to 3.9.5-r3, update to version 3.9.5-r3 or later. As a temporary workaround, consider restricting access to the BGP dissector in tcpdump until a patch is available.