6.8
CVE-2007-1218
- EPSS 2.82%
- Veröffentlicht 02.03.2007 21:18:00
- Zuletzt bearbeitet 16.06.2026 22:37:10
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Off-by-one buffer overflow in the parse_elements function in the 802.11 printer code (print-802_11.c) for tcpdump 3.9.5 and earlier allows remote attackers to cause a denial of service (crash) via a crafted 802.11 frame. NOTE: this was originally referred to as heap-based, but it might be stack-based.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.82% | 0.848 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
http://docs.info.apple.com/article.html?artnum=307179
http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html
http://secunia.com/advisories/28136
http://www.us-cert.gov/cas/techalerts/TA07-352A.html
http://www.vupen.com/english/advisories/2007/4238
http://cvs.tcpdump.org/cgi-bin/cvsweb/tcpdump/print-802_11.c
http://cvs.tcpdump.org/cgi-bin/cvsweb/tcpdump/print-802_11.c?r1=1.31.2.11&r2=1.31.2.12
http://fedoranews.org/cms/node/2798
http://fedoranews.org/cms/node/2799
http://seclists.org/fulldisclosure/2007/Mar/0003.html
http://secunia.com/advisories/24318
http://secunia.com/advisories/24354
http://secunia.com/advisories/24423
http://secunia.com/advisories/24451
http://secunia.com/advisories/24583
http://secunia.com/advisories/24610
http://secunia.com/advisories/27580
http://www.debian.org/security/2007/dsa-1272
http://www.mandriva.com/security/advisories?name=MDKSA-2007:056
http://www.mandriva.com/security/advisories?name=MDKSA-2007:155
http://www.osvdb.org/32427
http://www.redhat.com/support/errata/RHSA-2007-0368.html
http://www.redhat.com/support/errata/RHSA-2007-0387.html
http://www.securityfocus.com/bid/22772
http://www.securitytracker.com/id?1017717
http://www.turbolinux.com/security/2007/TLSA-2007-46.txt
http://www.ubuntu.com/usn/usn-429-1
http://www.vupen.com/english/advisories/2007/0793
https://bugs.gentoo.org/show_bug.cgi?id=168916
https://exchange.xforce.ibmcloud.com/vulnerabilities/32749
https://issues.rpath.com/browse/RPL-1100
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9520