Guy Harris

93 exploits Active since Feb 2014
CVE-2017-12899 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in DECnet Parser
The DECnet parser in tcpdump before 4.9.2 has a buffer over-read in print-decnet.c:decnet_print().
CVSS 9.8
CVE-2017-12900 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.1 - Out-of-bounds Read in util-print.c:tok2strbuf()
Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in util-print.c:tok2strbuf().
CVSS 9.8
CVE-2017-12901 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in EIGRP Parser
The EIGRP parser in tcpdump before 4.9.2 has a buffer over-read in print-eigrp.c:eigrp_print().
CVSS 9.8
CVE-2017-12902 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in Zephyr Parser
The Zephyr parser in tcpdump before 4.9.2 has a buffer over-read in print-zephyr.c, several functions.
CVSS 9.8
CVE-2017-12985 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in IPv6 Parser
The IPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-ip6.c:ip6_print().
CVSS 9.8
CVE-2017-12986 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in IPv6 Routing Header Parser
The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print().
CVSS 9.8
CVE-2017-12987 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in IEEE 802.11 Parser
The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements().
CVSS 9.8
CVE-2017-12988 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.1 - Out-of-bounds Read in Telnet Parser
The telnet parser in tcpdump before 4.9.2 has a buffer over-read in print-telnet.c:telnet_parse().
CVSS 9.8
CVE-2017-12989 WRITEUP HIGH WRITEUP
tcpdump < 4.9.2 - Denial of Service via RESP Parser Infinite Loop
The RESP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-resp.c:resp_get_length().
CVSS 7.5
CVE-2017-12990 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Denial of Service via ISAKMP Parser Infinite Loop
The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop due to bugs in print-isakmp.c, several functions.
CVSS 9.8
CVE-2017-12991 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in BGP Parser
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().
CVSS 9.8
CVE-2017-12992 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in RIPng Parser
The RIPng parser in tcpdump before 4.9.2 has a buffer over-read in print-ripng.c:ripng_print().
CVSS 9.8
CVE-2017-12993 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.1 - Out-of-bounds Read in Juniper Protocols Parser
The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c, several functions.
CVSS 9.8
CVE-2017-12994 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in BGP Parser
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().
CVSS 9.8
CVE-2017-12995 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Denial of Service via DNS Parser Infinite Loop
The DNS parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-domain.c:ns_print().
CVSS 9.8
CVE-2017-12996 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in PIMv2 Parser
The PIMv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c:pimv2_print().
CVSS 9.8
CVE-2017-12997 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Denial of Service via LLDP Parser Infinite Loop
The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c:lldp_private_8021_print().
CVSS 9.8
CVE-2017-12998 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in IS-IS Parser
The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_extd_ip_reach().
CVSS 9.8
CVE-2017-12999 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in IS-IS Parser
The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print().
CVSS 9.8
CVE-2017-13000 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in IEEE 802.15.4 Parser
The IEEE 802.15.4 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_15_4.c:ieee802_15_4_if_print().
CVSS 9.8
CVE-2017-13001 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in NFS Parser
The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:nfs_printfh().
CVSS 9.8
CVE-2017-13002 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in AODV Parser
The AODV parser in tcpdump before 4.9.2 has a buffer over-read in print-aodv.c:aodv_extension().
CVSS 9.8
CVE-2017-13003 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in LMP Parser
The LMP parser in tcpdump before 4.9.2 has a buffer over-read in print-lmp.c:lmp_print().
CVSS 9.8
CVE-2017-13004 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in Juniper Protocols Parser
The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c:juniper_parse_header().
CVSS 9.8
CVE-2017-13006 WRITEUP CRITICAL WRITEUP
tcpdump < 4.9.2 - Out-of-bounds Read in L2TP Parser
The L2TP parser in tcpdump before 4.9.2 has a buffer over-read in print-l2tp.c, several functions.
CVSS 9.8