Published: 05/12/2014 Updated: 09/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2 and previous versions allows remote malicious users to cause a denial of service (crash) cia a crafted PPP packet.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat tcpdump

Several security issues were fixed in tcpdump ...

Several vulnerabilities have been discovered in tcpdump, a command-line network traffic analyzer These vulnerabilities might result in denial of service, leaking sensitive information from memory or, potentially, execution of arbitrary code For the stable distribution (wheezy), these problems have been fixed in version 430-1+deb7u1 For the upc ...

Debian Bug report logs - #770424 tcpdump: CVE-2014-8769: unreliable output using malformed AOVD payload Package: tcpdump; Maintainer for tcpdump is Romain Francoise <rfrancoise@debianorg>; Source for tcpdump is src:tcpdump (PTS, buildd, popcon) Reported by: Nguyen Cong <congnguyenthe@toshiba-tsdvcom> Date: Fri, 21 ...

Debian Bug report logs - #770434 tcpdump: CVE-2014-8767: tcpdump denial of service in verbose mode using malformed OLSR payload Package: tcpdump; Maintainer for tcpdump is Romain Francoise <rfrancoise@debianorg>; Source for tcpdump is src:tcpdump (PTS, buildd, popcon) Reported by: Nguyen Cong <congnguyenthe@toshiba-tsdv ...

CWE-119 http://www.ubuntu.com/usn/USN-2433-1 http://www.debian.org/security/2014/dsa-3086 https://github.com/the-tcpdump-group/tcpdump/commit/0f95d441e4b5d7512cc5c326c8668a120e048eda http://seclists.org/tcpdump/2014/q4/72 http://www.debian.org/security/2015/dsa-3193 http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html http://www.mandriva.com/security/advisories?name=MDVSA-2014:240 http://advisories.mageia.org/MGASA-2014-0511.html http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html http://www.mandriva.com/security/advisories?name=MDVSA-2015:125 http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html https://support.apple.com/kb/HT205031 http://www.securityfocus.com/bid/71468 http://www.securityfocus.com/archive/1/534829/100/0/threaded https://nvd.nist.gov https://usn.ubuntu.com/2433-1/

CVE-2014-9140

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect