CVE-2014-8768

tcpdump <4.7 - DoS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-8768. PoCs published by Steffen Bauch.

AI-analyzed exploit summary This exploit demonstrates a denial-of-service vulnerability in tcpdump (CVE-2014-8768) by sending a malformed Geonet payload, causing a segmentation fault due to an unsafe decrement and underflow in the `geonet_print` function.

Description

Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allow remote attackers to cause a denial of service (segmentation fault and crash) via a crafted length value in a Geonet frame.

Exploits (1)

exploitdb WORKING POC
by Steffen Bauch · textdosmultiple
https://www.exploit-db.com/exploits/35359

This exploit demonstrates a denial-of-service vulnerability in tcpdump (CVE-2014-8768) by sending a malformed Geonet payload, causing a segmentation fault due to an unsafe decrement and underflow in the `geonet_print` function.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: tcpdump versions 4.5.0 through 4.6.2
No auth needed
Prerequisites: Network access to the target system · tcpdump running in verbose mode on a monitored interface
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/35359
Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2015-02/msg00062.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/129156/tcpdump-4.6.2-Geonet-Denial-Of-Service.html
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2433-1
Exploit, Third Party Advisory, VDB Entry mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/Nov/48
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/71155
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/98766
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/534010/100/0/threaded

Scores

EPSS 0.1981
EPSS Percentile 97.1%

Details

CWE
CWE-191
Status published
Products (13)
canonical/ubuntu_linux 10.04
canonical/ubuntu_linux 12.04
canonical/ubuntu_linux 14.04
canonical/ubuntu_linux 14.10
opensuse/opensuse 13.1
opensuse/opensuse 13.2
oracle/solaris 11.2
redhat/tcpdump 4.5.0
redhat/tcpdump 4.5.1
redhat/tcpdump 4.5.2
... and 3 more
Published Nov 20, 2014
Tracked Since Feb 18, 2026