Guy Harris - Security Researcher - Exploit Intelligence Platform

CVE-2017-13007 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in Apple PKTAP Parser

The Apple PKTAP parser in tcpdump before 4.9.2 has a buffer over-read in print-pktap.c:pktap_if_print().

CVSS 9.8

View Code

CVE-2017-13008 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in IEEE 802.11 Parser

The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements().

CVSS 9.8

View Code

CVE-2017-13009 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in IPv6 Mobility Parser

The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_print().

CVSS 9.8

View Code

CVE-2017-13010 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in BEEP Parser

The BEEP parser in tcpdump before 4.9.2 has a buffer over-read in print-beep.c:l_strnstart().

CVSS 9.8

View Code

CVE-2017-13011 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Buffer Overflow in util-print.c bittok2str_internal()

Several protocol parsers in tcpdump before 4.9.2 could cause a buffer overflow in util-print.c:bittok2str_internal().

CVSS 9.8

View Code

CVE-2017-13012 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in ICMP Parser

The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmp_print().

CVSS 9.8

View Code

CVE-2017-13013 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.1 - Out-of-bounds Read in ARP Parser

The ARP parser in tcpdump before 4.9.2 has a buffer over-read in print-arp.c, several functions.

CVSS 9.8

View Code

CVE-2017-13014 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in White Board Protocol Parser

The White Board protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-wb.c:wb_prep(), several functions.

CVSS 9.8

View Code

CVE-2017-13015 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in EAP Parser

The EAP parser in tcpdump before 4.9.2 has a buffer over-read in print-eap.c:eap_print().

CVSS 9.8

View Code

CVE-2017-13016 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in ISO ES-IS Parser

The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print().

CVSS 9.8

View Code

CVE-2017-13017 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in DHCPv6 Parser

The DHCPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-dhcp6.c:dhcp6opt_print().

CVSS 9.8

View Code

CVE-2017-13018 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in PGM Parser

The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().

CVSS 9.8

View Code

CVE-2017-13019 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in PGM Parser

The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().

CVSS 9.8

View Code

CVE-2017-13020 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in VTP Parser

The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print().

CVSS 9.8

View Code

CVE-2017-13021 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.1 - Out-of-bounds Read in ICMPv6 Parser

The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_print().

CVSS 9.8

View Code

CVE-2017-13022 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in IP Parser

The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printroute().

CVSS 9.8

View Code

CVE-2017-13026 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in ISO IS-IS Parser

The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c, several functions.

CVSS 9.8

View Code

CVE-2017-13027 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in LLDP Parser

The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_mgmt_addr_tlv_print().

CVSS 9.8

View Code

CVE-2017-13029 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in PPP Parser

The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:print_ccp_config_options().

CVSS 9.8

View Code

CVE-2017-13030 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in PIM Parser

The PIM parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c, several functions.

CVSS 9.8

View Code

CVE-2017-13031 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in IPv6 Fragmentation Header Parser

The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a buffer over-read in print-frag6.c:frag6_print().

CVSS 9.8

View Code

CVE-2017-13032 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.1 - Out-of-bounds Read in RADIUS Parser

The RADIUS parser in tcpdump before 4.9.2 has a buffer over-read in print-radius.c:print_attr_string().

CVSS 9.8

View Code

CVE-2017-13033 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in VTP Parser

The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print().

CVSS 9.8

View Code

CVE-2017-13034 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in PGM Parser

The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().

CVSS 9.8

View Code

CVE-2017-13035 WRITEUP CRITICAL WRITEUP

tcpdump < 4.9.2 - Out-of-bounds Read in ISO IS-IS Parser

The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_id().

CVSS 9.8

View Code