AIX 7.1 TL 4 : tcpdump (IV94726)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote AIX host is missing a security patch.

Description :

Vulnerabilities in tcpdump affect AIX :

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12993
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12993 tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the Juniper component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the RIPng component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the BGP
component. By sending a specially crafted request, an attacker could
exploit this vulnerability to obtain sensitive information. tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the telnet component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the IEEE 802.11 component. By sending a specially
crafted request, an attacker could exploit this vulnerability to
obtain sensitive information. tcpdump could allow a remote attacker to
obtain sensitive information, caused by a buffer overread memory in
the IPv6 routing headers component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the IPv6
component. By sending a specially crafted request, an attacker could
exploit this vulnerability to obtain sensitive information. tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the Zephyr component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the EIGRP component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the
tok2strbuf component. By sending a specially crafted request, an
attacker could exploit this vulnerability to obtain sensitive
information. tcpdump could allow a remote attacker to obtain sensitive
information, caused by a buffer overread memory in the DECnet
component. By sending a specially crafted request, an attacker could
exploit this vulnerability to obtain sensitive information. tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the NFS component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the ISO CLNS component. By sending a specially
crafted request, an attacker could exploit this vulnerability to
obtain sensitive information. tcpdump could allow a remote attacker to
obtain sensitive information, caused by a buffer overread memory in
the ISAKMP component. By sending a specially crafted request, an
attacker could exploit this vulnerability to obtain sensitive
information. tcpdump could allow a remote attacker to obtain sensitive
information, caused by a buffer overread memory in the ICMP component.
By sending a specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the lookup_bytestring component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the SMB/CIFS component. By sending a specially
crafted request, an attacker could exploit this vulnerability to
obtain sensitive information. tcpdump is vulnerable to a denial of
service, caused by a heap-based buffer over-read in the pimv1_print
function in print-pim.c. An attacker could exploit this vulnerability
to cause the application to crash. tcpdump is vulnerable to a denial
of service, caused by a heap-based buffer over-read in the lldp_print
function in print-lldp.c. An attacker could exploit this vulnerability
to cause the application to crash. tcpdump is vulnerable to a denial
of service, caused by an error in the LLDP component. By sending
specially crafted data, a remote attacker could exploit this
vulnerability to cause the application to enter into an infinite loop.
tcpdump is vulnerable to a denial of service, caused by an error in
the DNS component. By sending specially crafted data, a remote
attacker could exploit this vulnerability to cause the application to
enter into an infinite loop. tcpdump is vulnerable to a denial of
service, caused by an error in the ISAKMP component. By sending
specially crafted data, a remote attacker could exploit this
vulnerability to cause the application to enter into an infinite loop.
tcpdump is vulnerable to a denial of service, caused by an error in
the RESP component. By sending specially crafted data, a remote
attacker could exploit this vulnerability to cause the application to
enter into an infinite loop. tcpdump is vulnerable to a buffer
overflow, caused by improper bounds checking by the
bittok2str_internal component. By sending an overly long string
argument, a remote attacker could overflow a buffer and execute
arbitrary code on the system or cause the application to crash.
tcpdump is vulnerable to a denial of service, caused by a buffer
overflow in the sliplink_print function in print-sl.c. An attacker
could exploit this vulnerability to cause the application to crash.
tcpdump could allow a remote attacker to obtain sensitive information,
caused by a buffer overread memory in the PGM component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the DHCPv6 component. By sending a specially
crafted request, an attacker could exploit this vulnerability to
obtain sensitive information. tcpdump could allow a remote attacker to
obtain sensitive information, caused by a buffer overread memory in
the ISO ES-IS component. By sending a specially crafted request, an
attacker could exploit this vulnerability to obtain sensitive
information. tcpdump is vulnerable to a denial of service, caused by a
buffer overflow in the sliplink_print function in print-sl.c. An
attacker could exploit this vulnerability to cause the application to
crash. tcpdump could allow a remote attacker to obtain sensitive
information, caused by a buffer overread memory in the EAP component.
By sending a specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the White Board component. By sending a specially
crafted request, an attacker could exploit this vulnerability to
obtain sensitive information. tcpdump could allow a remote attacker to
obtain sensitive information, caused by a buffer overread memory in
the ARP component. By sending a specially crafted request, an attacker
could exploit this vulnerability to obtain sensitive information.
tcpdump could allow a remote attacker to obtain sensitive information,
caused by a buffer overread memory in the ICMP component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the BEEP component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the IPv6
mobility component. By sending a specially crafted request, an
attacker could exploit this vulnerability to obtain sensitive
information. tcpdump could allow a remote attacker to obtain sensitive
information, caused by a buffer overread memory in the IEEE 802.11
component. By sending a specially crafted request, an attacker could
exploit this vulnerability to obtain sensitive information. tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the L2TP component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the NFS component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the
Juniper component. By sending a specially crafted request, an attacker
could exploit this vulnerability to obtain sensitive information.
tcpdump could allow a remote attacker to obtain sensitive information,
caused by a buffer overread memory in the LMP component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the AODV component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the NFS
component. By sending a specially crafted request, an attacker could
exploit this vulnerability to obtain sensitive information. tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the IEEE 802.15.4 component. By sending
a specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the ISO IS-IS component. By sending a specially
crafted request, an attacker could exploit this vulnerability to
obtain sensitive information. tcpdump could allow a remote attacker to
obtain sensitive information, caused by a buffer overread memory in
the ISO IS-IS component. By sending a specially crafted request, an
attacker could exploit this vulnerability to obtain sensitive
information. tcpdump could allow a remote attacker to obtain sensitive
information, caused by a buffer overread memory in the PIMv2
component. By sending a specially crafted request, an attacker could
exploit this vulnerability to obtain sensitive information. tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the BGP component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump is vulnerable
to a denial of service, caused by a heap-based buffer over-read in the
lldp_print function in print-lldp.c. An attacker could exploit this
vulnerability to cause the application to crash. tcpdump is vulnerable
to a denial of service, caused by a heap-based buffer over-read in the
pimv1_print function in print-pim.c. An attacker could exploit this
vulnerability to cause the application to crash. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the BGP component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the HNCP
component. By sending a specially crafted request, an attacker could
exploit this vulnerability to obtain sensitive information. tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the ICMPv6 component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the MPTCP component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the
ISAKMP component. By sending a specially crafted request, an attacker
could exploit this vulnerability to obtain sensitive information.
tcpdump could allow a remote attacker to obtain sensitive information,
caused by a buffer overread memory in the PPP component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the IP component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the
OSPFv3 component. By sending a specially crafted request, an attacker
could exploit this vulnerability to obtain sensitive information.
tcpdump could allow a remote attacker to obtain sensitive information,
caused by a buffer overread memory in the ISO IS-IS component. By
sending a specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the PGM component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the VTP
component. By sending a specially crafted request, an attacker could
exploit this vulnerability to obtain sensitive information. tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the RADIUS component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the IPv6 fragmentation header component. By sending
a specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the PIM component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the PPP
component. By sending a specially crafted request, an attacker could
exploit this vulnerability to obtain sensitive information. tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the BOOTP component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the LLDP component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the ISO
IS-IS component. By sending a specially crafted request, an attacker
could exploit this vulnerability to obtain sensitive information.
tcpdump could allow a remote attacker to obtain sensitive information,
caused by a buffer overread memory in the IPv6 mobility component. By
sending a specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the IPv6 mobility component. By sending a specially
crafted request, an attacker could exploit this vulnerability to
obtain sensitive information. tcpdump could allow a remote attacker to
obtain sensitive information, caused by a buffer overread memory in
the IPv6 mobility component. By sending a specially crafted request,
an attacker could exploit this vulnerability to obtain sensitive
information. tcpdump could allow a remote attacker to obtain sensitive
information, caused by a buffer overread memory in the IP component.
By sending a specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the ICMPv6 component. By sending a specially
crafted request, an attacker could exploit this vulnerability to
obtain sensitive information. tcpdump could allow a remote attacker to
obtain sensitive information, caused by a buffer overread memory in
the VTP component. By sending a specially crafted request, an attacker
could exploit this vulnerability to obtain sensitive information.
tcpdump could allow a remote attacker to obtain sensitive information,
caused by a buffer overread memory in the PGM component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the IPv6 routing headers component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the IKEv2 component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the IKEv1
component. By sending a specially crafted request, an attacker could
exploit this vulnerability to obtain sensitive information. tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the OLSR component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the Cisco HDLC component. By sending a specially
crafted request, an attacker could exploit this vulnerability to
obtain sensitive information. tcpdump could allow a remote attacker to
obtain sensitive information, caused by a buffer overread memory in
the ISO IS-IS component. By sending a specially crafted request, an
attacker could exploit this vulnerability to obtain sensitive
information. tcpdump could allow a remote attacker to obtain sensitive
information, caused by a buffer overread memory in the LLDP component.
By sending a specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the BGP component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information. tcpdump could allow a remote attacker to obtain
sensitive information, caused by a buffer overread memory in the CFM
component. By sending a specially crafted request, an attacker could
exploit this vulnerability to obtain sensitive information. tcpdump
could allow a remote attacker to obtain sensitive information, caused
by a buffer overread memory in the RSVP component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the RPKI-Router component. By sending a specially
crafted request, an attacker could exploit this vulnerability to
obtain sensitive information. tcpdump could allow a remote attacker to
obtain sensitive information, caused by a buffer overread memory in
the Rx component. By sending a specially crafted request, an attacker
could exploit this vulnerability to obtain sensitive information.
tcpdump could allow a remote attacker to obtain sensitive information,
caused by a buffer overread memory in the RSVP component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the ISO ES-IS component. By sending a specially
crafted request, an attacker could exploit this vulnerability to
obtain sensitive information. tcpdump could allow a remote attacker to
obtain sensitive information, caused by a buffer overread memory in
the BGP component. By sending a specially crafted request, an attacker
could exploit this vulnerability to obtain sensitive information.
tcpdump could allow a remote attacker to obtain sensitive information,
caused by a buffer overread memory in the VQP component. By sending a
specially crafted request, an attacker could exploit this
vulnerability to obtain sensitive information. tcpdump could allow a
remote attacker to obtain sensitive information, caused by a buffer
overread memory in the HNCP component. By sending a specially crafted
request, an attacker could exploit this vulnerability to obtain
sensitive information.

See also :

http://aix.software.ibm.com/aix/efixes/security/tcpdump_advisory3.asc

Solution :

Install the appropriate interim fix.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)