5

CVE-2005-1267

The bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the decode_prefix4 function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted BGP packet.

Data is provided by the National Vulnerability Database (NVD)
LblTcpdump Version3.4
LblTcpdump Version3.4a6
LblTcpdump Version3.5
LblTcpdump Version3.5.2
LblTcpdump Version3.5_alpha
LblTcpdump Version3.6.2
LblTcpdump Version3.6.3
LblTcpdump Version3.7
LblTcpdump Version3.7.1
LblTcpdump Version3.7.2
LblTcpdump Version3.8.1
LblTcpdump Version3.8.2
LblTcpdump Version3.8.3
LblTcpdump Version3.9
LblTcpdump Version3.9.1
MandrakesoftMandrake Linux Version10.1
MandrakesoftMandrake Linux Version10.1 Editionx86_64
MandrakesoftMandrake Linux Version10.2
MandrakesoftMandrake Linux Version10.2 Editionx86_64
RedhatFedora Core Versioncore_3.0
RedhatFedora Core Versioncore_4.0
TrustixSecure Linux Version2.0
TrustixSecure Linux Version2.1
TrustixSecure Linux Version2.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 11.27% 0.928
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P