6.8

CVE-2007-1218

Off-by-one buffer overflow in the parse_elements function in the 802.11 printer code (print-802_11.c) for tcpdump 3.9.5 and earlier allows remote attackers to cause a denial of service (crash) via a crafted 802.11 frame.  NOTE: this was originally referred to as heap-based, but it might be stack-based.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
TcpdumpTcpdump Version <= 3.9.5
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.82% 0.848
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://docs.info.apple.com/article.html?artnum=307179
http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html
http://secunia.com/advisories/28136
Vendor Advisory
http://www.us-cert.gov/cas/techalerts/TA07-352A.html
US Government Resource
http://www.vupen.com/english/advisories/2007/4238
http://cvs.tcpdump.org/cgi-bin/cvsweb/tcpdump/print-802_11.c
http://cvs.tcpdump.org/cgi-bin/cvsweb/tcpdump/print-802_11.c?r1=1.31.2.11&r2=1.31.2.12
http://fedoranews.org/cms/node/2798
http://fedoranews.org/cms/node/2799
http://seclists.org/fulldisclosure/2007/Mar/0003.html
http://secunia.com/advisories/24318
Vendor Advisory
http://secunia.com/advisories/24354
Vendor Advisory
http://secunia.com/advisories/24423
Vendor Advisory
http://secunia.com/advisories/24451
Vendor Advisory
http://secunia.com/advisories/24583
Vendor Advisory
http://secunia.com/advisories/24610
Vendor Advisory
http://secunia.com/advisories/27580
Vendor Advisory
http://www.debian.org/security/2007/dsa-1272
http://www.mandriva.com/security/advisories?name=MDKSA-2007:056
http://www.mandriva.com/security/advisories?name=MDKSA-2007:155
http://www.osvdb.org/32427
http://www.redhat.com/support/errata/RHSA-2007-0368.html
http://www.redhat.com/support/errata/RHSA-2007-0387.html
http://www.securityfocus.com/bid/22772
http://www.securitytracker.com/id?1017717
http://www.turbolinux.com/security/2007/TLSA-2007-46.txt
http://www.ubuntu.com/usn/usn-429-1
http://www.vupen.com/english/advisories/2007/0793
https://bugs.gentoo.org/show_bug.cgi?id=168916
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/32749
https://issues.rpath.com/browse/RPL-1100
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9520