Francois-Xavier Le Bail

22 exploits Active since Sep 2017
CVE-2017-13024 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in IPv6 Mobility Parser
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
CVSS 9.8
CVE-2018-14469 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in IKEv1 Parser
The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1_n_print().
CVSS 7.5
CVE-2018-14880 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in OSPFv3 Parser
The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr().
CVSS 7.5
CVE-2018-14881 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in BGP Parser
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_RESTART).
CVSS 7.5
CVE-2019-15166 WRITEUP LOW WRITEUP
tcpdump < 4.9.3 - Buffer Overflow in lmp_print_data_link_subobjs
lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.
CVSS 1.6
CVE-2018-14463 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in VRRP Parser
The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 2, a different vulnerability than CVE-2019-15167.
CVSS 7.5
CVE-2018-16451 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in SMB Parser
The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN.
CVSS 7.5
CVE-2017-13005 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in NFS Parser
The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:xid_map_enter().
CVSS 9.8
CVE-2017-13023 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in IPv6 Mobility Parser
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
CVSS 9.8
CVE-2017-13024 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in IPv6 Mobility Parser
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
CVSS 9.8
CVE-2017-13025 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in IPv6 Mobility Parser
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
CVSS 9.8
CVE-2017-13028 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in BOOTP Parser
The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootp_print().
CVSS 9.8
CVE-2017-13036 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in OSPFv3 Parser
The OSPFv3 parser in tcpdump before 4.9.2 has a buffer over-read in print-ospf6.c:ospf6_decode_v3().
CVSS 9.8
CVE-2018-14461 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in LDP Parser
The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print().
CVSS 7.5
CVE-2018-14462 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in ICMP Parser
The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().
CVSS 7.5
CVE-2018-14464 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in LMP Parser
The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs().
CVSS 7.5
CVE-2018-14465 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in RSVP Parser
The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print().
CVSS 7.5
CVE-2018-14467 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in BGP Parser
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_MP).
CVSS 7.5
CVE-2018-14882 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in ICMPv6 Parser
The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c.
CVSS 7.5
CVE-2018-16229 WRITEUP HIGH WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in DCCP Parser
The DCCP parser in tcpdump before 4.9.3 has a buffer over-read in print-dccp.c:dccp_print_option().
CVSS 7.5
CVE-2019-15167 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.3 - Out-of-bounds Read in VRRP Parser
The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 3, a different vulnerability than CVE-2018-14463.
CVSS 9.1
CVE-2020-8036 WRITEUP HIGH WRITEUP
tcpdump 4.10.0-PRE-GIT - Buffer Overflow
The tok2strbuf() function in tcpdump 4.10.0-PRE-GIT was used by the SOME/IP dissector in an unsafe way.
CVSS 7.5