KLA10498
Denial of service vulnerabilities in tcpdump
Обновлено: 17/06/2019
Дата обнаружения
24/03/2015
Уровень угрозы
Critical
Описание

Multiple serious vulnerabilities have been found in tcpdump. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities

  1. An unknown vulnerability can be exploited remotely via a specially designed packets and other unknown vectors;
  2. Integer signedness can be exploited remotely via a cpecially designed length value.
Пораженные продукты

tcpdump versions earlier than 4.7.2

Решение

Update to latest version!
Get tcpdump

Оказываемое влияние
?
DoS 
[?]
CVE-IDS
CVE-2015-02617.5Critical
CVE-2015-21557.5Critical
CVE-2015-21545.0Critical
CVE-2015-21535.0Critical