Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2015-2153Improper Restriction of Operations within the Bounds of a Memory Buffer in Tcpdump

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer11 documents8 sources
Severity
5.0MEDIUMNVD
EPSS
11.3%
top 6.44%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
TcpdumpDebian Tcpdump
Timeline
PublishedMar 24
Latest updateMay 14

Description

The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

debiandebian/tcpdump< tcpdump 4.6.2-4 (bookworm)
Debiantcpdump/tcpdump< 4.6.2-4+3
NVDtcpdump/tcpdump4.7.0

🔴Vulnerability Details

2
GHSA
GHSA-55mr-3h98-7hm7: The rpki_rtr_pdu_print function in print-rpki-rtr2022-05-14
OSV
CVE-2015-2153: The rpki_rtr_pdu_print function in print-rpki-rtr2015-03-24

💥Exploits & PoCs

1
Exploit-DB
TcpDump - rpki_rtr_pdu_print Out-of-Bounds Denial of Service2015-07-20

📋Vendor Advisories

3
Ubuntu
tcpdump vulnerabilities2015-04-27
Red Hat
tcpdump: tcp printer rpki_rtr_pdu_print() missing length check2015-03-09
Debian
CVE-2015-2153: tcpdump - The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdum...2015

💬Community

4
Bugzilla
CVE-2015-2155 tcpdump: force printer vulnerability2015-03-13
Bugzilla
CVE-2015-0261 CVE-2015-2154 CVE-2015-2153 CVE-2015-2155 tcpdump: various flaws [fedora-all]2015-03-13
Bugzilla
CVE-2015-2154 tcpdump: ethernet printer osi_print_cksum() missing sanity checks out-of-bounds read2015-03-13
Bugzilla
CVE-2015-2153 tcpdump: tcp printer rpki_rtr_pdu_print() missing length check2015-03-13
CVE-2015-2153 — Debian Tcpdump vulnerability | cvebase