CVE-2016-7932

Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.0

Description The issue is related to a buffer overflow in the PIM parser, specifically in the pimv2 check checksum() function. Additionally, there's a buffer overflow caused by improper bounds checking by the ISO CLNS parser in the clnp print() function. This could allow a remote attacker to overflow a buffer and execute arbitrary code on the system or cause the application to crash by sending an overly long argument to the /api endpoint, specifically affecting the print-pim.c and print-isoclns.c files, with variables such as pimv2 check checksum and clnp print being involved.

Recommendations For versions prior to 4.9.0, update to version 4.9.0 or later to resolve the issue. As a temporary workaround, consider disabling the pimv2 check checksum() and clnp print() functions until a patch is available. Restrict access to the print-pim.c and print-isoclns.c files to minimize the risk of exploitation.