CVE-2018-19519

MEDIUM

tcpdump <4.9.2 - Buffer Overflow

Title source: llm

Description

In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization.

References (9)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/106098

[Exploit, Mitigation, Third Party Advisory] https://github.com/zyingp/temp/blob/master/tcpdump.md

View Exploit ZIP pw:eip

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R2UDPOSGVJQIYC33SQBXMDXHH4QDSDMU/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNYXF3IY2X65IOD422SA6EQUULSGW7FN/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/62XY42U6HY3H2APR5EHNWCZ7SAQNMMJN/

[Vendor Advisory] https://access.redhat.com/errata/RHSA-2019:3976

[Vendor Advisory] https://usn.ubuntu.com/4252-2/

[Vendor Advisory] https://usn.ubuntu.com/4252-1/

[Various Sources] https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44516

Scores

CVSS v3 5.5

EPSS 0.0038

EPSS Percentile 59.6%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Details

CWE

CWE-909 CWE-125

Status published

Products (1)

tcpdump/tcpdump 4.9.2

Published Nov 25, 2018

Tracked Since Feb 18, 2026