CVE-2005-1267

Published Jun 10, 2005

Last updated 6 years ago

Overview

Description: The bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the decode_prefix4 function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted BGP packet.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9B50919-7C67-416D-BA2F-50747CDBE08F"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.4a6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "950C6522-3C7F-4E81-8952-246FFE1072C8"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6CC000D-857D-4E12-82E6-7F8168B463EE"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "45BACEA9-8C28-4DB6-96F7-D91B06C8EEF0"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.5_alpha:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "45083B9F-95CC-4EB7-9591-2146084CBBC5"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C3214AA7-1EB2-4EC8-96AA-2A9985A5EB8A"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B3985632-2246-499E-9F9B-5A416D3AB4F0"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD63F004-83A9-4CB3-A26D-E82589ED7FE3"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5DF65E89-04B7-49F2-ADCE-0BD0A313949E"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B76F042D-6D75-4BD3-8530-ED9E760B94A4"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB530211-6557-4E90-B659-0AC633DEDF00"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "836F7F79-8ADD-4A4F-BE45-0237206DD055"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.8.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6C1376C-68BC-4EBB-9B94-0E65728983A0"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C793D15A-646A-477F-A91A-945D5148A9D8"
          },
          {
            "criteria": "cpe:2.3:a:lbl:tcpdump:3.9.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5BB08C13-4146-461A-A35E-D450AAB195E7"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "647BA336-5538-4972-9271-383A0EC9378E"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3528DABD-B821-4D23-AE12-614A9CA92C46"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:10.1:*:x86_64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E661D58-18DF-4CCF-9892-F873618F4535"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:10.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11D69B83-4EF3-407B-8E8C-DE623F099C17"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:10.2:*:x86_64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1D16230-3699-4AAA-9CAE-5CAF34628885"
          },
          {
            "criteria": "cpe:2.3:o:redhat:fedora_core:core_3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC80CF67-C51D-442C-9526-CFEDE84A6304"
          },
          {
            "criteria": "cpe:2.3:o:redhat:fedora_core:core_4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C720DACC-CF4B-4A00-818C-8303A7D7DED6"
          },
          {
            "criteria": "cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53AF1A2D-B0A2-4097-AD1D-DF3AF27171BA"
          },
          {
            "criteria": "cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A67735E5-E43E-4164-BDB2-ADC6E0288E9F"
          },
          {
            "criteria": "cpe:2.3:o:trustix:secure_linux:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AB70F82-52BB-4D0D-9A24-9AF67278466D"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References