CVE-2017-11108

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

tcpdump 4.9.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packet data. The crash occurs in the EXTRACT_16BITS function, called from the stp_print function for the Spanning Tree Protocol.

References

http://www.debian.org/security/2017/dsa-3971

https://access.redhat.com/errata/RHEA-2018:0705

https://bugzilla.redhat.com/show_bug.cgi?id=1468504

https://security.gentoo.org/glsa/201709-23

https://support.apple.com/HT208221

Details

Source: MITRE

Published: 2017-07-08

Updated: 2019-10-03

Type: CWE-125

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:tcpdump:tcpdump:4.9.0:*:*:*:*:*:*:*

Tenable Plugins

View all (14 total)

IDNameProductFamilySeverity
132209EulerOS 2.0 SP3 : tcpdump (EulerOS-SA-2019-2674)NessusHuawei Local Security Checks
critical
131589EulerOS 2.0 SP2 : tcpdump (EulerOS-SA-2019-2435)NessusHuawei Local Security Checks
critical
127275NewStart CGSL CORE 5.04 / MAIN 5.04 : tcpdump Multiple Vulnerabilities (NS-SA-2019-0071)NessusNewStart CGSL Local Security Checks
critical
700512macOS 10.13.x < 10.13.1 Multiple VulnerabilitiesNessus Network MonitorOperating System Detection
critical
104379macOS and Mac OS X Multiple Vulnerabilities (Security Update 2017-001 and 2017-004)NessusMacOS X Local Security Checks
critical
104378macOS 10.13.x < 10.13.1 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
high
104239openSUSE Security Update : tcpdump (openSUSE-2017-1205)NessusSuSE Local Security Checks
critical
104208SUSE SLED12 / SLES12 Security Update : tcpdump (SUSE-SU-2017:2854-1)NessusSuSE Local Security Checks
critical
103769SUSE SLES11 Security Update : tcpdump (SUSE-SU-2017:2690-1)NessusSuSE Local Security Checks
critical
103462GLSA-201709-23 : Tcpdump: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
103218Ubuntu 14.04 LTS / 16.04 LTS / 17.04 : tcpdump vulnerabilities (USN-3415-1)NessusUbuntu Local Security Checks
critical
103148Debian DSA-3971-1 : tcpdump - security updateNessusDebian Local Security Checks
critical
102982Debian DLA-1090-1 : tcpdump security updateNessusDebian Local Security Checks
critical
101932Slackware 13.37 / 14.0 / 14.1 / 14.2 / current : tcpdump (SSA:2017-205-01)NessusSlackware Local Security Checks
high