CVE

CVE-2002-1350

Date: (C)2002-12-23   (M)2023-12-22

The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash).

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.5
Exploit Score: 10.0
Impact Score: 6.4
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL

Reference:

http://marc.info/?l=bugtraq&m=104032975103398&w=2

BID-6213

CSSA-2002-050.0

DSA-206

MDKSA-2003:027

RHSA-2003:032

RHSA-2003:033

RHSA-2003:214

http://www.tcpdump.org/lists/workers/2001/10/msg00101.html

tcpdump-sizeof-memory-corruption(10695)