threat
engine
.sh
Back
·
··:··
Home
/
Product
/
tcpdump
Product
tcpdump
203 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2024-8006
< 1.10.5
Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support en
4.4
MEDIUM
CVE-2023-7256
< 1.10.5
In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinf
4.4
MEDIUM
CVE-2023-1801
all versions
The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds write when decoding a crafted network packet.
6.5
MEDIUM
CVE-2019-15167
< 4.9.3
The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 3, a different vulner
9.1
CRITICAL
CVE-2021-41043
< 1.5
Use after free in tcpslice triggers AddressSanitizer, no other confirmed impact.
5.5
MEDIUM
CVE-2020-8037
all versions
The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory.
7.5
HIGH
CVE-2020-8036
all versions
The tok2strbuf() function in tcpdump 4.10.0-PRE-GIT was used by the SOME/IP dissector in an unsafe way.
7.5
HIGH
CVE-2019-15165
< 1.9.1
sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory.
5.3
MEDIUM
CVE-2019-15164
< 1.9.1
rpcapd/daemon.c in libpcap before 1.9.1 allows SSRF because a URL may be provided as a capture source.
5.3
MEDIUM
CVE-2019-15163
< 1.9.1
rpcapd/daemon.c in libpcap before 1.9.1 allows attackers to cause a denial of service (NULL pointer dereference and daemon crash)
7.5
HIGH
CVE-2019-15162
< 1.9.1
rpcapd/daemon.c in libpcap before 1.9.1 on non-Windows platforms provides details about why authentication failed, which might mak
5.3
MEDIUM
CVE-2019-15161
< 1.9.1
rpcapd/daemon.c in libpcap before 1.9.1 mishandles certain length values because of reuse of a variable. This may open up an attac
5.3
MEDIUM
CVE-2019-15166
< 4.9.3
lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.
1.6
LOW
CVE-2018-16452
< 4.9.3
The SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smb_fdata() via recursion.
7.5
HIGH
CVE-2018-16451
< 4.9.3
The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN.
7.5
HIGH
CVE-2018-16301
< 4.99.0
The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulner
7.8
HIGH
CVE-2018-16300
< 4.9.3
The BGP parser in tcpdump before 4.9.3 allows stack consumption in print-bgp.c:bgp_attr_print() because of unlimited recursion.
7.5
HIGH
CVE-2018-16230
< 4.9.3
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_attr_print() (MP_REACH_NLRI).
7.5
HIGH
CVE-2018-16229
< 4.9.3
The DCCP parser in tcpdump before 4.9.3 has a buffer over-read in print-dccp.c:dccp_print_option().
7.5
HIGH
CVE-2018-16228
< 4.9.3
The HNCP parser in tcpdump before 4.9.3 has a buffer over-read in print-hncp.c:print_prefix().
7.5
HIGH
CVE-2018-16227
< 4.9.3
The IEEE 802.11 parser in tcpdump before 4.9.3 has a buffer over-read in print-802_11.c for the Mesh Flags subfield.
7.5
HIGH
CVE-2018-14882
< 4.9.3
The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c.
7.5
HIGH
CVE-2018-14881
< 4.9.3
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_RESTART).
7.5
HIGH
CVE-2018-14880
< 4.9.3
The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr().
7.5
HIGH
CVE-2018-14879
< 4.9.3
The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().
7.0
HIGH
CVE-2018-14470
< 4.9.3
The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c:babel_print_v2().
7.5
HIGH
CVE-2018-14469
< 4.9.3
The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1_n_print().
7.5
HIGH
CVE-2018-14468
< 4.9.3
The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().
7.5
HIGH
CVE-2018-14467
< 4.9.3
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_MP).
7.5
HIGH
CVE-2018-14466
< 4.9.3
The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rx_cache_find() and rx_cache_insert().
7.5
HIGH
CVE-2018-14465
< 4.9.3
The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print().
7.5
HIGH
CVE-2018-14464
< 4.9.3
The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs().
7.5
HIGH
CVE-2018-14463
< 4.9.3
The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 2, a different vulner
7.5
HIGH
CVE-2018-14462
< 4.9.3
The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().
7.5
HIGH
CVE-2018-14461
< 4.9.3
The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print().
7.5
HIGH
CVE-2018-10105
< 4.9.3
tcpdump before 4.9.3 mishandles the printing of SMB data (issue 2 of 2).
9.8
CRITICAL
CVE-2018-10103
< 4.9.3
tcpdump before 4.9.3 mishandles the printing of SMB data (issue 1 of 2).
9.8
CRITICAL
CVE-2019-1010220
all versions
tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer, Return Address
3.3
LOW
CVE-2018-19519
all versions
In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data becau
5.5
MEDIUM
CVE-2017-16808
all versions
tcpdump before 4.9.3 has a heap-based buffer over-read related to aoe_print in print-aoe.c and lookup_emem in addrtoname.c.
5.5
MEDIUM
CVE-2011-1935
>= 1.1.1 and < 1.2.1
pcap-linux.c in libpcap 1.1.1 before commit ea9432fabdf4b33cbc76d9437200e028f1c47c93 when snaplen is set may truncate packets, whi
9.8
CRITICAL
CVE-2015-3138
<= 4.7.3
print-wb.c in tcpdump before 4.7.4 allows remote attackers to cause a denial of service (segmentation fault and process crash).
7.5
HIGH
CVE-2017-13725
<= 4.9.1
The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print().
9.8
CRITICAL
CVE-2017-13690
<= 4.9.1
The IKEv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c, several functions.
9.8
CRITICAL
CVE-2017-13689
<= 4.9.1
The IKEv1 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:ikev1_id_print().
9.8
CRITICAL
CVE-2017-13688
<= 4.9.1
The OLSR parser in tcpdump before 4.9.2 has a buffer over-read in print-olsr.c:olsr_print().
9.8
CRITICAL
CVE-2017-13687
<= 4.9.1
The Cisco HDLC parser in tcpdump before 4.9.2 has a buffer over-read in print-chdlc.c:chdlc_print().
9.8
CRITICAL
CVE-2017-13055
<= 4.9.1
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_is_reach_subtlv().
9.8
CRITICAL
CVE-2017-13054
<= 4.9.1
The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_private_8023_print().
9.8
CRITICAL
CVE-2017-13053
<= 4.9.1
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_rt_routing_info().
9.8
CRITICAL
CVE-2017-13052
<= 4.9.1
The CFM parser in tcpdump before 4.9.2 has a buffer over-read in print-cfm.c:cfm_print().
9.8
CRITICAL
CVE-2017-13051
<= 4.9.1
The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print().
9.8
CRITICAL
CVE-2017-13050
<= 4.9.1
The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c:rpki_rtr_pdu_print().
9.8
CRITICAL
CVE-2017-13049
<= 4.9.1
The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-rx.c:ubik_print().
9.8
CRITICAL
CVE-2017-13048
<= 4.9.1
The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print().
9.8
CRITICAL
CVE-2017-13047
<= 4.9.1
The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print().
9.8
CRITICAL
CVE-2017-13046
<= 4.9.1
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().
9.8
CRITICAL
CVE-2017-13045
<= 4.9.1
The VQP parser in tcpdump before 4.9.2 has a buffer over-read in print-vqp.c:vqp_print().
9.8
CRITICAL
CVE-2017-13044
<= 4.9.1
The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv4_print().
9.8
CRITICAL
CVE-2017-13043
<= 4.9.1
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_multicast_vpn().
9.8
CRITICAL
CVE-2017-13042
<= 4.9.1
The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv6_print().
9.8
CRITICAL
CVE-2017-13041
<= 4.9.1
The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_nodeinfo_print().
9.8
CRITICAL
CVE-2017-13040
<= 4.9.1
The MPTCP parser in tcpdump before 4.9.2 has a buffer over-read in print-mptcp.c, several functions.
9.8
CRITICAL
CVE-2017-13039
<= 4.9.1
The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c, several functions.
9.8
CRITICAL
CVE-2017-13038
<= 4.9.1
The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp().
9.8
CRITICAL
CVE-2017-13037
<= 4.9.1
The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printts().
9.8
CRITICAL
CVE-2017-13036
<= 4.9.1
The OSPFv3 parser in tcpdump before 4.9.2 has a buffer over-read in print-ospf6.c:ospf6_decode_v3().
9.8
CRITICAL
CVE-2017-13035
<= 4.9.1
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_id().
9.8
CRITICAL
CVE-2017-13034
<= 4.9.1
The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().
9.8
CRITICAL
CVE-2017-13033
<= 4.9.1
The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print().
9.8
CRITICAL
CVE-2017-13032
<= 4.9.1
The RADIUS parser in tcpdump before 4.9.2 has a buffer over-read in print-radius.c:print_attr_string().
9.8
CRITICAL
CVE-2017-13031
<= 4.9.1
The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a buffer over-read in print-frag6.c:frag6_print().
9.8
CRITICAL
CVE-2017-13030
<= 4.9.1
The PIM parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c, several functions.
9.8
CRITICAL
CVE-2017-13029
<= 4.9.1
The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:print_ccp_config_options().
9.8
CRITICAL
CVE-2017-13028
<= 4.9.1
The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootp_print().
9.8
CRITICAL
CVE-2017-13027
<= 4.9.1
The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_mgmt_addr_tlv_print().
9.8
CRITICAL
CVE-2017-13026
<= 4.9.1
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c, several functions.
9.8
CRITICAL
CVE-2017-13025
<= 4.9.1
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
9.8
CRITICAL
CVE-2017-13024
<= 4.9.1
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
9.8
CRITICAL
CVE-2017-13023
<= 4.9.1
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
9.8
CRITICAL
CVE-2017-13022
<= 4.9.1
The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printroute().
9.8
CRITICAL
CVE-2017-13021
<= 4.9.1
The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_print().
9.8
CRITICAL
CVE-2017-13020
<= 4.9.1
The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print().
9.8
CRITICAL
CVE-2017-13019
<= 4.9.1
The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().
9.8
CRITICAL
CVE-2017-13018
<= 4.9.1
The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().
9.8
CRITICAL
CVE-2017-13017
<= 4.9.1
The DHCPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-dhcp6.c:dhcp6opt_print().
9.8
CRITICAL
CVE-2017-13016
<= 4.9.1
The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print().
9.8
CRITICAL
CVE-2017-13015
<= 4.9.1
The EAP parser in tcpdump before 4.9.2 has a buffer over-read in print-eap.c:eap_print().
9.8
CRITICAL
CVE-2017-13014
<= 4.9.1
The White Board protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-wb.c:wb_prep(), several functions.
9.8
CRITICAL
CVE-2017-13013
<= 4.9.1
The ARP parser in tcpdump before 4.9.2 has a buffer over-read in print-arp.c, several functions.
9.8
CRITICAL
CVE-2017-13012
<= 4.9.1
The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmp_print().
9.8
CRITICAL
CVE-2017-13011
<= 4.9.1
Several protocol parsers in tcpdump before 4.9.2 could cause a buffer overflow in util-print.c:bittok2str_internal().
9.8
CRITICAL
CVE-2017-13010
<= 4.9.1
The BEEP parser in tcpdump before 4.9.2 has a buffer over-read in print-beep.c:l_strnstart().
9.8
CRITICAL
CVE-2017-13009
<= 4.9.1
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_print().
9.8
CRITICAL
CVE-2017-13008
<= 4.9.1
The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements().
9.8
CRITICAL
CVE-2017-13007
<= 4.9.1
The Apple PKTAP parser in tcpdump before 4.9.2 has a buffer over-read in print-pktap.c:pktap_if_print().
9.8
CRITICAL
CVE-2017-13006
<= 4.9.1
The L2TP parser in tcpdump before 4.9.2 has a buffer over-read in print-l2tp.c, several functions.
9.8
CRITICAL
CVE-2017-13005
<= 4.9.1
The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:xid_map_enter().
9.8
CRITICAL
CVE-2017-13004
<= 4.9.1
The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c:juniper_parse_header().
9.8
CRITICAL
CVE-2017-13003
<= 4.9.1
The LMP parser in tcpdump before 4.9.2 has a buffer over-read in print-lmp.c:lmp_print().
9.8
CRITICAL
CVE-2017-13002
<= 4.9.1
The AODV parser in tcpdump before 4.9.2 has a buffer over-read in print-aodv.c:aodv_extension().
9.8
CRITICAL
CVE-2017-13001
<= 4.9.1
The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:nfs_printfh().
9.8
CRITICAL
CVE-2017-13000
<= 4.9.1
The IEEE 802.15.4 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_15_4.c:ieee802_15_4_if_print().
9.8
CRITICAL
CVE-2017-12999
<= 4.9.1
The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print().
9.8
CRITICAL
CVE-2017-12998
<= 4.9.1
The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_extd_ip_reach().
9.8
CRITICAL
CVE-2017-12997
<= 4.9.1
The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c:lldp_private_8021_print().
9.8
CRITICAL
CVE-2017-12996
<= 4.9.1
The PIMv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c:pimv2_print().
9.8
CRITICAL
CVE-2017-12995
<= 4.9.1
The DNS parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-domain.c:ns_print().
9.8
CRITICAL
CVE-2017-12994
<= 4.9.1
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().
9.8
CRITICAL
CVE-2017-12993
<= 4.9.1
The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c, several functions.
9.8
CRITICAL
CVE-2017-12992
<= 4.9.1
The RIPng parser in tcpdump before 4.9.2 has a buffer over-read in print-ripng.c:ripng_print().
9.8
CRITICAL
CVE-2017-12991
<= 4.9.1
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().
9.8
CRITICAL
CVE-2017-12990
<= 4.9.1
The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop due to bugs in print-isakmp.c, several functions.
9.8
CRITICAL
CVE-2017-12989
<= 4.9.1
The RESP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-resp.c:resp_get_length().
7.5
HIGH
CVE-2017-12988
<= 4.9.1
The telnet parser in tcpdump before 4.9.2 has a buffer over-read in print-telnet.c:telnet_parse().
9.8
CRITICAL
CVE-2017-12987
<= 4.9.1
The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements().
9.8
CRITICAL
CVE-2017-12986
<= 4.9.1
The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print().
9.8
CRITICAL
CVE-2017-12985
<= 4.9.1
The IPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-ip6.c:ip6_print().
9.8
CRITICAL
CVE-2017-12902
<= 4.9.1
The Zephyr parser in tcpdump before 4.9.2 has a buffer over-read in print-zephyr.c, several functions.
9.8
CRITICAL
CVE-2017-12901
<= 4.9.1
The EIGRP parser in tcpdump before 4.9.2 has a buffer over-read in print-eigrp.c:eigrp_print().
9.8
CRITICAL
CVE-2017-12900
<= 4.9.1
Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in util-print.c:tok2strbuf().
9.8
CRITICAL
CVE-2017-12899
<= 4.9.1
The DECnet parser in tcpdump before 4.9.2 has a buffer over-read in print-decnet.c:decnet_print().
9.8
CRITICAL
CVE-2017-12898
<= 4.9.1
The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:interp_reply().
9.8
CRITICAL
CVE-2017-12897
<= 4.9.1
The ISO CLNS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isoclns_print().
9.8
CRITICAL
CVE-2017-12896
<= 4.9.1
The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:isakmp_rfc3948_print().
9.8
CRITICAL
CVE-2017-12895
<= 4.9.1
The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmp_print().
9.8
CRITICAL
CVE-2017-12894
<= 4.9.1
Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in addrtoname.c:lookup_bytestring().
9.8
CRITICAL
CVE-2017-12893
<= 4.9.1
The SMB/CIFS parser in tcpdump before 4.9.2 has a buffer over-read in smbutil.c:name_len().
9.8
CRITICAL
CVE-2017-11543
all versions
tcpdump 4.9.0 has a buffer overflow in the sliplink_print function in print-sl.c.
9.8
CRITICAL
CVE-2017-11542
all versions
tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print function in print-pim.c.
9.8
CRITICAL
CVE-2017-11541
all versions
tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c.
9.8
CRITICAL
CVE-2017-11108
all versions
tcpdump 4.9.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted
7.5
HIGH
CVE-2017-5486
<= 4.8.1
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
9.8
CRITICAL
CVE-2017-5485
<= 4.8.1
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookup_nsap().
9.8
CRITICAL
CVE-2017-5484
<= 4.8.1
The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print().
9.8
CRITICAL
CVE-2017-5483
<= 4.8.1
The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1_parse().
9.8
CRITICAL
CVE-2017-5482
<= 4.8.1
The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2016
9.8
CRITICAL
CVE-2017-5342
<= 4.8.1
In tcpdump before 4.9.0, a bug in multiple protocol parsers (Geneve, GRE, NSH, OTV, VXLAN and VXLAN GPE) could cause a buffer over
9.8
CRITICAL
CVE-2017-5341
<= 4.8.1
The OTV parser in tcpdump before 4.9.0 has a buffer overflow in print-otv.c:otv_print().
9.8
CRITICAL
CVE-2017-5205
< 4.9.0
The ISAKMP parser in tcpdump before 4.9.0 has a buffer overflow in print-isakmp.c:ikev2_e_print().
9.8
CRITICAL
CVE-2017-5204
< 4.9.0
The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print().
9.8
CRITICAL
CVE-2017-5203
< 4.9.0
The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().
9.8
CRITICAL
CVE-2017-5202
< 4.9.0
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
9.8
CRITICAL
CVE-2016-8575
<= 4.8.1
The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017
9.8
CRITICAL
CVE-2016-8574
<= 4.8.1
The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print().
9.8
CRITICAL
CVE-2016-7993
<= 4.8.1
A bug in util-print.c:relts_print() in tcpdump before 4.9.0 could cause a buffer overflow in multiple protocol parsers (DNS, DVMRP
9.8
CRITICAL
CVE-2016-7992
<= 4.8.1
The Classical IP over ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-cip.c:cip_if_print().
9.8
CRITICAL
CVE-2016-7986
<= 4.8.1
The GeoNetworking parser in tcpdump before 4.9.0 has a buffer overflow in print-geonet.c, multiple functions.
9.8
CRITICAL
CVE-2016-7985
<= 4.8.1
The CALM FAST parser in tcpdump before 4.9.0 has a buffer overflow in print-calm-fast.c:calm_fast_print().
9.8
CRITICAL
CVE-2016-7984
<= 4.8.1
The TFTP parser in tcpdump before 4.9.0 has a buffer overflow in print-tftp.c:tftp_print().
9.8
CRITICAL
CVE-2016-7983
<= 4.8.1
The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().
9.8
CRITICAL
CVE-2016-7975
<= 4.8.1
The TCP parser in tcpdump before 4.9.0 has a buffer overflow in print-tcp.c:tcp_print().
9.8
CRITICAL
CVE-2016-7974
<= 4.8.1
The IP parser in tcpdump before 4.9.0 has a buffer overflow in print-ip.c, multiple functions.
9.8
CRITICAL
CVE-2016-7973
<= 4.8.1
The AppleTalk parser in tcpdump before 4.9.0 has a buffer overflow in print-atalk.c, multiple functions.
9.8
CRITICAL
CVE-2016-7940
<= 4.8.1
The STP parser in tcpdump before 4.9.0 has a buffer overflow in print-stp.c, multiple functions.
9.8
CRITICAL
CVE-2016-7939
<= 4.8.1
The GRE parser in tcpdump before 4.9.0 has a buffer overflow in print-gre.c, multiple functions.
9.8
CRITICAL
CVE-2016-7938
<= 4.8.1
The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in print-zeromq.c:zmtp1_print_frame().
9.8
CRITICAL
CVE-2016-7937
<= 4.8.1
The VAT parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:vat_print().
9.8
CRITICAL
CVE-2016-7936
<= 4.8.1
The UDP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:udp_print().
9.8
CRITICAL
CVE-2016-7935
<= 4.8.1
The RTP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:rtp_print().
9.8
CRITICAL
CVE-2016-7934
<= 4.8.1
The RTCP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:rtcp_print().
9.8
CRITICAL
CVE-2016-7933
<= 4.8.1
The PPP parser in tcpdump before 4.9.0 has a buffer overflow in print-ppp.c:ppp_hdlc_if_print().
9.8
CRITICAL
CVE-2016-7932
<= 4.8.1
The PIM parser in tcpdump before 4.9.0 has a buffer overflow in print-pim.c:pimv2_check_checksum().
9.8
CRITICAL
CVE-2016-7931
<= 4.8.1
The MPLS parser in tcpdump before 4.9.0 has a buffer overflow in print-mpls.c:mpls_print().
9.8
CRITICAL
CVE-2016-7930
<= 4.8.1
The LLC/SNAP parser in tcpdump before 4.9.0 has a buffer overflow in print-llc.c:llc_print().
9.8
CRITICAL
CVE-2016-7929
<= 4.8.1
The Juniper PPPoE ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-juniper.c:juniper_parse_header().
9.8
CRITICAL
CVE-2016-7928
<= 4.8.1
The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcomp_print().
9.8
CRITICAL
CVE-2016-7927
<= 4.8.1
The IEEE 802.11 parser in tcpdump before 4.9.0 has a buffer overflow in print-802_11.c:ieee802_11_radio_print().
9.8
CRITICAL
CVE-2016-7926
<= 4.8.1
The Ethernet parser in tcpdump before 4.9.0 has a buffer overflow in print-ether.c:ethertype_print().
9.8
CRITICAL
CVE-2016-7925
<= 4.8.1
The compressed SLIP parser in tcpdump before 4.9.0 has a buffer overflow in print-sl.c:sl_if_print().
9.8
CRITICAL
CVE-2016-7924
<= 4.8.1
The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:oam_print().
9.8
CRITICAL
CVE-2016-7923
<= 4.8.1
The ARP parser in tcpdump before 4.9.0 has a buffer overflow in print-arp.c:arp_print().
9.8
CRITICAL
CVE-2016-7922
<= 4.8.1
The AH parser in tcpdump before 4.9.0 has a buffer overflow in print-ah.c:ah_print().
9.8
CRITICAL
CVE-2015-2155
<= 4.7.0
The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitr
CVE-2015-2154
<= 4.7.0
The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a
CVE-2015-2153
<= 4.7.0
The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a
CVE-2015-0261
<= 4.7.0
Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote att
CVE-2014-9140
<= 4.6.2
Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2 and earlier allows remote attackers to cause a denial of
CVE-2014-8769
all versions
tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (p
CVE-2014-8768
all versions
Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allow remote attack
CVE-2014-8767
all versions
Integer underflow in the olsr_print function in tcpdump 3.9.6 through 4.6.2, when in verbose mode, allows remote attackers to caus
CVE-2007-3798
<= 3.9.6
Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary cod
9.8
CRITICAL
CVE-2007-1218
<= 3.9.5
Off-by-one buffer overflow in the parse_elements function in the 802.11 printer code (print-802_11.c) for tcpdump 3.9.5 and earlie
CVE-2005-1267
all versions
The bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the decode_prefix4 function, which al
CVE-2005-1280
<= 3.9.1
The rsvp_print function in tcpdump 3.9.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via a cr
CVE-2005-1279
<= 3.8.3
tcpdump 3.8.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted (1) BGP packet, which
CVE-2005-1278
<= 3.9.1
The isis_print function, as called by isoclns_print, in tcpdump 3.9.1 and earlier allows remote attackers to cause a denial of ser
CVE-2004-0184
<= 3.8.1
Integer underflow in the isakmp_id_print for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash
CVE-2004-0183
<= 3.8.1
TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payl
CVE-2004-0057
<= 3.8.1
The rawprint function in the ISAKMP decoding routines (print-isakmp.c) for tcpdump 3.8.1 and earlier allows remote attackers to ca
CVE-2004-0055
all versions
The print_attr_string function in print-radius.c for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of servic
CVE-2003-1029
all versions
The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memo
CVE-2003-0989
<= 3.8.0
tcpdump before 3.8.1 allows remote attackers to cause a denial of service (infinite loop) via certain ISAKMP packets, a different
CVE-2003-0194
all versions
tcpdump does not properly drop privileges to the pcap user when starting up.
CVE-2003-0145
all versions
Unknown vulnerability in tcpdump before 3.7.2 related to an inability to "Handle unknown RADIUS attributes properly," allows remot
CVE-2003-0108
all versions
isakmp_sub_print in tcpdump 3.6 through 3.7.1 allows remote attackers to cause a denial of service (CPU consumption) via a certain
CVE-2003-0093
all versions
The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service (crash) via an invalid RADIUS
CVE-2002-1350
<= 3.6.2.2.2
The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial o
CVE-2002-0380
<= 3.6.2
Buffer overflow in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary c
CVE-1999-1024
all versions
ip_print procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet with a zero length header, wh
CVE-2001-1279
all versions
Buffer overflow in print-rx.c of tcpdump 3.x (probably 3.6x) allows remote attackers to cause a denial of service and possibly exe
CVE-2000-1026
all versions
Multiple buffer overflows in LBNL tcpdump allow remote attackers to execute arbitrary commands.
CVE-2000-0333
all versions
tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in whi
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin