Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-8575

Опубликовано: 02 фев. 2017
Источник: redhat
CVSS3: 6.5
EPSS Низкий

Описание

The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482.

Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.

Отчет

Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.

Меры по смягчению последствий

When invoked with the "-w" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5tcpdumpWill not fix
Red Hat Enterprise Linux 6tcpdumpWill not fix
Red Hat Enterprise Linux 7tcpdumpFixedRHSA-2017:187101.08.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-125
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=1419066tcpdump: multiple overflow issues in protocol decoding

EPSS

Процентиль: 88%
0.04378
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2016-8575

CVSS3: 9.8
ubuntu
почти 9 лет назад

The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482.

nvd логотип

CVE-2016-8575

CVSS3: 9.8
nvd
почти 9 лет назад

The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482.

debian логотип

CVE-2016-8575

CVSS3: 9.8
debian
почти 9 лет назад

The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in prin ...

github логотип

GHSA-h997-96mc-97gm

CVSS3: 9.8
github
больше 3 лет назад

The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482.

oracle-oval логотип

ELSA-2017-1871

oracle-oval
больше 8 лет назад

ELSA-2017-1871: tcpdump security, bug fix, and enhancement update (MODERATE)

EPSS

Процентиль: 88%
0.04378
Низкий

6.5 Medium

CVSS3