CVE-2007-3798

2007-07-17 00:30:00 2018-10-15 23:30:57

Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Tcpdump Tcpdump 3.9.6 (not an official CPE)

Tcpdump - Tcpdump

Advisory	Patch	Confirmed	Link
			ADV-2007-4238
			TA07-352A
			ADV-2007-2578
			USN-492-1
			TLSA-2007-46
			2007-0023
			1018434
			20070720 rPSA-2007-0147-1 tcpdump
			24965
			RHSA-2007:0368
			RHSA-2007:0387
			MDKSA-2007:148
			SUSE-SR:2007:016
			DSA-1353
			http://www.digit-labs.org/files/exploits/private/tcpdump...
			GLSA-200707-14
			SSA:2007-230-01
			FreeBSD-SA-07:06
			APPLE-SA-2007-12-17
			http://docs.info.apple.com/article.html?artnum=307179
			http://cvs.tcpdump.org/cgi-bin/cvsweb/tcpdump/print-bgp....
			http://bugs.gentoo.org/show_bug.cgi?id=184815

CVE-2007-3798

2007-07-17 00:30:00 2018-10-15 23:30:57

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)