CVE-2002-1350
published 2002-12-23CVE-2002-1350: The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash).
PriorityP419high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.37%
81.7th percentile
The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash).
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tcpdump | < tcpdump 3.7.2-1 (bookworm) | tcpdump 3.7.2-1 (bookworm) |
| lbl | tcpdump | <= 3.6.2.2.2 | — |
| tcpdump | tcpdump | >= 0 < 3.7.2-1 | 3.7.2-1 |
| tcpdump | tcpdump | >= 0 < 3.7.2-1 | 3.7.2-1 |
| tcpdump | tcpdump | >= 0 < 3.7.2-1 | 3.7.2-1 |
| tcpdump | tcpdump | >= 0 < 3.7.2-1 | 3.7.2-1 |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-r67j-rqm9-w8mr: The BGP decoding routines in tcpdump 3
ghsa_unreviewed·2022-05-03
CVE-2002-1350 [HIGH] GHSA-r67j-rqm9-w8mr: The BGP decoding routines in tcpdump 3
The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash).
OSV
CVE-2002-1350: The BGP decoding routines in tcpdump 3
osv·2002-12-23·CVSS 7.5
CVE-2002-1350 [HIGH] CVE-2002-1350: The BGP decoding routines in tcpdump 3
The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash).
Debian
CVE-2002-1350: tcpdump - The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data,...
vendor_debian·2002·CVSS 7.5
CVE-2002-1350 [HIGH] CVE-2002-1350: tcpdump - The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data,...
The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash).
Scope: local
bookworm: resolved (fixed in 3.7.2-1)
bullseye: resolved (fixed in 3.7.2-1)
forky: resolved (fixed in 3.7.2-1)
sid: resolved (fixed in 3.7.2-1)
trixie: resolved (fixed in 3.7.2-1)
Red Hat
security flaw
vendor_redhat·2001-10-15·CVSS 7.5
CVE-2002-1350 [HIGH] security flaw
security flaw
The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash).
No detection rules found.
Bugzilla
CVE-2002-1350 security flaw
bugzilla·2018-08-16·CVSS 7.5
CVE-2002-1350 [HIGH] CVE-2002-1350 security flaw
CVE-2002-1350 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash).
Bugzilla
tcpdump problem with bgp decoding
bugzilla·2003-01-29
[MEDIUM] tcpdump problem with bgp decoding
tcpdump problem with bgp decoding
The BGP decoding routines for tcpdump used incorrect bounds checking when
copying data. This could be abused by introducing malicious traffic on a sniffed
network for a denial of service attack against tcpdump, or possibly even remote
code execution.
RHSA-2002:094 patched CAN-2002-0380 with tcpdump-3.6.2-11
AS/RHSA-2002:121 patched CAN-2002-0380 with tcpdump-3.6.2-11
See http://marc.theaimsgroup.com/?l=bugtraq&m=103956164004031&w=2
also http://www.tcpdump.org/lists/workers/2001/10/msg00101.html
3.6.* is vulnerable, 3.7 isn't
CVE applied for Dec11: CAN-2002-1350
Discussion:
*** Bug 80152 has been marked as a duplicate of this bug. ***
---
An errata has been issued which should help the problem described in this bug report.
This report is therefore
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-050.0.txthttp://marc.info/?l=bugtraq&m=104032975103398&w=2http://www.debian.org/security/2002/dsa-206http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:027http://www.redhat.com/support/errata/RHSA-2003-032.htmlhttp://www.redhat.com/support/errata/RHSA-2003-033.htmlhttp://www.redhat.com/support/errata/RHSA-2003-214.htmlhttp://www.securityfocus.com/bid/6213http://www.tcpdump.org/lists/workers/2001/10/msg00101.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/10695ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-050.0.txthttp://marc.info/?l=bugtraq&m=104032975103398&w=2http://www.debian.org/security/2002/dsa-206http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:027http://www.redhat.com/support/errata/RHSA-2003-032.htmlhttp://www.redhat.com/support/errata/RHSA-2003-033.htmlhttp://www.redhat.com/support/errata/RHSA-2003-214.htmlhttp://www.securityfocus.com/bid/6213http://www.tcpdump.org/lists/workers/2001/10/msg00101.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/10695
2002-12-23
Published