Описание
In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization.
Ссылки
- Third Party AdvisoryVDB Entry
- ExploitMitigationThird Party Advisory
- Third Party AdvisoryVDB Entry
- ExploitMitigationThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:tcpdump:tcpdump:4.9.2:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00383
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-125
Связанные уязвимости
CVSS3: 5.5
ubuntu
около 7 лет назад
In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization.
CVSS3: 4.3
redhat
около 7 лет назад
In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization.
CVSS3: 5.5
debian
около 7 лет назад
In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_p ...
EPSS
Процентиль: 59%
0.00383
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-125