Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2014-8768

CWE-191 CWE-190 — Integer Overflow CWE-787 — Out-of-bounds Write11 documents9 sources

Severity

5.0MEDIUM

EPSS

28.3%

top 3.49%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Canonical Ubuntu Linux Opensuse Opensuse Oracle Solaris +1 more

Timeline

PublishedNov 20

Latest updateMay 14

Description

Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allow remote attackers to cause a denial of service (segmentation fault and crash) via a crafted length value in a Geonet frame.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages4 packages

▶Debiantcpdump< 4.6.2-2+3

▶NVDredhat/tcpdump6 versions+5

▶NVDoracle/solaris11.2

▶NVDopensuse/opensuse13.1, 13.2+1

Also affects: Ubuntu Linux 10.04, 12.04, 14.04, 14.10

🔴Vulnerability Details

GHSA

GHSA-vfhx-w4xw-3mwg: Multiple Integer underflows in the geonet_print function in tcpdump 4↗2022-05-14

▶

OSV

tcpdump vulnerabilities↗2014-12-04

▶

CVEList

CVE-2014-8768: Multiple Integer underflows in the geonet_print function in tcpdump 4↗2014-11-20

▶

OSV

CVE-2014-8768: Multiple Integer underflows in the geonet_print function in tcpdump 4↗2014-11-20

▶

💥Exploits & PoCs

Exploit-DB

tcpdump 4.6.2 - Geonet Decoder Denial of Service↗2014-11-24

▶

📋Vendor Advisories

Ubuntu

tcpdump vulnerabilities↗2014-12-04

▶

Red Hat

tcpdump: denial of service in verbose mode using malformed Geonet payload↗2014-11-13

▶

Debian

CVE-2014-8768: tcpdump - Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 throug...↗2014

▶

💬Community

Bugzilla

CVE-2014-8768 tcpdump: denial of service in verbose mode using malformed Geonet payload [fedora-all]↗2014-11-18

▶

Bugzilla

CVE-2014-8768 tcpdump: denial of service in verbose mode using malformed Geonet payload↗2014-11-18

▶