SB2017091318 - Ubuntu update for tcpdump 

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2017091318

SB2017091318 - Ubuntu update for tcpdump

Published: September 13, 2017

Security Bulletin ID SB2017091318
Severity
Low
Patch available
YES
Number of vulnerabilities 90
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 90 secuirty vulnerabilities.


1) Buffer overflow (CVE-ID: CVE-2017-11543)

The vulnerability allows a remote attacker to cause DoS condition or execute arbitrary code on the target system.

The weakness exists due to boundary error in the sliplink_print function in print-sl.c. A remote attacker can send specially crafted data, trigger buffer overflow and cause the application to crash or execute arbitrary code.

Successful exploitation of the vulnerability may result in system compromise.

2) Buffer overflow (CVE-ID: CVE-2017-13011)

The vulnerability allows a remote attacker to cause DoS condition or execute arbitrary code on the target system.

The weakness exists due to boundary error in the the bittok2str_internal component. A remote attacker can send an overly long string argument, trigger buffer overflow and cause the application to crash or possibly execute arbitrary code.

Successful exploitation of the vulnerability may result in system compromise.

3) Infinite loop (CVE-ID: CVE-2017-12989)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to infinite loop in the RESP component. A remote attacker can send specially crafted data and cause the application to crash.

Successful exploitation of the vulnerability results in denial of service.

4) Infinite loop (CVE-ID: CVE-2017-12990)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to infinite loop in the ISAKMP component. A remote attacker can send specially crafted data and cause the application to crash.

Successful exploitation of the vulnerability results in denial of service.

5) Infinite loop (CVE-ID: CVE-2017-12995)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to infinite loop in the DNS component. A remote attacker can send specially crafted data and cause the application to crash.

Successful exploitation of the vulnerability results in denial of service.

6) Infinite loop (CVE-ID: CVE-2017-12997)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to infinite loop in the LLDP component. A remote attacker can send specially crafted data and cause the application to crash.

Successful exploitation of the vulnerability results in denial of service.

7) Out-of-bounds read (CVE-ID: CVE-2017-11108)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists to a boundary error in the EXTRACT_16BITS() function, called from the stp_print function for the Spanning Tree Protocol in tcpdump 4.9.0. A remote attacker can send a specially crafted network packet, trigger heap-based buffer over-read and crash the affected application.

Successful exploitation of the vulnerability may allow an attacker to perform a denial of service (DoS) attack.

8) Buffer over-read (CVE-ID: CVE-2017-11541)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the safeputs component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

9) Buffer over-read (CVE-ID: CVE-2017-11542)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the PIMv1 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

10) Buffer over-read (CVE-ID: CVE-2017-12893)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the SMB/CIFS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

11) Buffer over-read (CVE-ID: CVE-2017-12894)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the lookup_bytestring component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

12) Buffer over-read (CVE-ID: CVE-2017-12895)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ICMP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

13) Buffer over-read (CVE-ID: CVE-2017-12896)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ISAKMP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

14) Buffer over-read (CVE-ID: CVE-2017-12897)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ISO CLNS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

15) Buffer over-read (CVE-ID: CVE-2017-12898)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the NFS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

16) Buffer over-read (CVE-ID: CVE-2017-12899)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the DECnet component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

17) Buffer over-read (CVE-ID: CVE-2017-12900)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the tok2strbuf component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

18) Buffer over-read (CVE-ID: CVE-2017-12901)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the EIGRP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

19) Buffer over-read (CVE-ID: CVE-2017-12902)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the Zephyr component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

20) Buffer over-read (CVE-ID: CVE-2017-12985)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IPv6 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

21) Buffer over-read (CVE-ID: CVE-2017-12986)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IPv6 routing headers component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

22) Buffer over-read (CVE-ID: CVE-2017-12987)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IEEE 802.11 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

23) Buffer over-read (CVE-ID: CVE-2017-12988)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the telnet component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

24) Buffer over-read (CVE-ID: CVE-2017-12991)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the BGP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

25) Buffer over-read (CVE-ID: CVE-2017-12992)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the RIPng component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

26) Buffer over-read (CVE-ID: CVE-2017-12993)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the Juniper component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

27) Buffer over-read (CVE-ID: CVE-2017-12994)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the BGP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

28) Buffer over-read (CVE-ID: CVE-2017-12996)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the PIMv2 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

29) Buffer over-read (CVE-ID: CVE-2017-12998)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ISO IS-IS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

30) Buffer over-read (CVE-ID: CVE-2017-12999)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ISO IS-IS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

31) Buffer over-read (CVE-ID: CVE-2017-13000)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IEEE 802.15.4 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

32) Buffer over-read (CVE-ID: CVE-2017-13001)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the NFS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

33) Buffer over-read (CVE-ID: CVE-2017-13002)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the AODV component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

34) Buffer over-read (CVE-ID: CVE-2017-13003)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the LMP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

35) Buffer over-read (CVE-ID: CVE-2017-13004)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the Juniper component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

36) Buffer over-read (CVE-ID: CVE-2017-13005)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the NFS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

37) Buffer over-read (CVE-ID: CVE-2017-13006)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the L2TP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

38) Buffer over-read (CVE-ID: CVE-2017-13007)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the Apple PKTAP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

39) Buffer over-read (CVE-ID: CVE-2017-13008)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IEEE 802.11 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

40) Buffer over-read (CVE-ID: CVE-2017-13009)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IPv6 mobility component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

41) Buffer over-read (CVE-ID: CVE-2017-13010)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the BEEP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

42) Buffer over-read (CVE-ID: CVE-2017-13012)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ICMP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

43) Buffer over-read (CVE-ID: CVE-2017-13013)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ARP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

44) Buffer over-read (CVE-ID: CVE-2017-13014)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the White Board component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

45) Buffer over-read (CVE-ID: CVE-2017-13015)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the EAP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

46) Buffer over-read (CVE-ID: CVE-2017-13016)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ISO ES-IS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

47) Buffer over-read (CVE-ID: CVE-2017-13017)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the DHCPv6 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

48) Buffer over-read (CVE-ID: CVE-2017-13018)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the PGM component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

49) Buffer over-read (CVE-ID: CVE-2017-13019)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the PGM component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

50) Buffer over-read (CVE-ID: CVE-2017-13020)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the VTP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

51) Buffer over-read (CVE-ID: CVE-2017-13021)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ICMPv6 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

52) Buffer over-read (CVE-ID: CVE-2017-13022)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

53) Buffer over-read (CVE-ID: CVE-2017-13023)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IPv6 mobility component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

54) Buffer over-read (CVE-ID: CVE-2017-13024)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IPv6 mobility component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

55) Buffer over-read (CVE-ID: CVE-2017-13025)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IPv6 mobility component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

56) Buffer over-read (CVE-ID: CVE-2017-13026)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ISO IS-IS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

57) Buffer over-read (CVE-ID: CVE-2017-13027)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the LLDP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

58) Buffer over-read (CVE-ID: CVE-2017-13028)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the BOOTP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

59) Buffer over-read (CVE-ID: CVE-2017-13029)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the PPP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

60) Buffer over-read (CVE-ID: CVE-2017-13030)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the PIM component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

61) Buffer over-read (CVE-ID: CVE-2017-13031)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IPv6 fragmentation header component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

62) Buffer over-read (CVE-ID: CVE-2017-13032)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the RADIUS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

63) Buffer over-read (CVE-ID: CVE-2017-13033)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the VTP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

64) Buffer over-read (CVE-ID: CVE-2017-13034)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the PGM component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

65) Buffer over-read (CVE-ID: CVE-2017-13035)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ISO IS-IS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

66) Buffer over-read (CVE-ID: CVE-2017-13036)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the OSPFv3 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

67) Buffer over-read (CVE-ID: CVE-2017-13037)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

68) Buffer over-read (CVE-ID: CVE-2017-13038)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the PPP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

69) Buffer over-read (CVE-ID: CVE-2017-13039)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ISAKMP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

70) Buffer over-read (CVE-ID: CVE-2017-13040)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the MPTCP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

71) Buffer over-read (CVE-ID: CVE-2017-13041)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ICMPv6 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

72) Buffer over-read (CVE-ID: CVE-2017-13042)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the HNCP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

73) Buffer over-read (CVE-ID: CVE-2017-13043)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the BGP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

74) Buffer over-read (CVE-ID: CVE-2017-13044)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the HNCP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

75) Buffer over-read (CVE-ID: CVE-2017-13045)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the VQP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

76) Buffer over-read (CVE-ID: CVE-2017-13046)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the BGP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

77) Buffer over-read (CVE-ID: CVE-2017-13047)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ISO ES-IS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

78) Buffer over-read (CVE-ID: CVE-2017-13048)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the RSVP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

79) Buffer over-read (CVE-ID: CVE-2017-13049)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the Rx component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

80) Buffer over-read (CVE-ID: CVE-2017-13050)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the RPKI-Router component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

81) Buffer over-read (CVE-ID: CVE-2017-13051)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the RSVP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

82) Buffer over-read (CVE-ID: CVE-2017-13052)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the CFM component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

83) Buffer over-read (CVE-ID: CVE-2017-13053)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the BGP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

84) Buffer over-read (CVE-ID: CVE-2017-13054)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the LLDP component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

85) Buffer over-read (CVE-ID: CVE-2017-13055)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the ISO IS-IS component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

86) Buffer over-read (CVE-ID: CVE-2017-13687)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the Cisco HDLC component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

87) Buffer over-read (CVE-ID: CVE-2017-13688)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the OLSR component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

88) Buffer over-read (CVE-ID: CVE-2017-13689)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IKEv1 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

89) Buffer over-read (CVE-ID: CVE-2017-13690)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IKEv2 component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

90) Buffer over-read (CVE-ID: CVE-2017-13725)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to buffer over-read in the IPv6 routing headers component. A remote attacker can send a specially crafted request and retrieve arbitrary files on the system.

Remediation

Install update from vendor's website.

References