Main Vulnerability Database Vulnerabilities #VU9337

#VU9337 Heap-based buffer overread in Tcpdump - CVE-2017-16808

Published: November 14, 2017 / Updated: October 22, 2019

Vulnerability identifier: #VU9337

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2017-16808

CWE-ID: CWE-126

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Tcpdump

Software vendor:
Tcpdump.org

Description

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The vulnerability exists due to heap-based buffer overread in 'addrtoname.c' when handling malicious input. A remote attacker can supply a specially crafted pcap fil, trigger buffer overread and cause the service to crash.

Successful exploitation of the vulnerability results in denial of service.

Remediation

Install updates from vendor's website.

External links

https://github.com/the-tcpdump-group/tcpdump/issues/645

#VU9337 Heap-based buffer overread in Tcpdump - CVE-2017-16808

Description

Remediation

External links

Please verify you're human