CVE-2014-8769

tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access.

CVSS v2.0 6.4 MEDIUM

6.4^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:P

Exploitability : 10.0 / Impact : 4.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://advisories.mageia.org/MGASA-2014-0503.html
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html
http://lists.opensuse.org/opensuse-updates/2015-02/msg00062.html
http://packetstormsecurity.com/files/129157/tcpdump-4.6.2-AOVD-Unreliable-Output.html	Exploit
http://seclists.org/fulldisclosure/2014/Nov/49	Exploit
http://www.debian.org/security/2014/dsa-3086
http://www.mandriva.com/security/advisories?name=MDVSA-2014:240
http://www.mandriva.com/security/advisories?name=MDVSA-2015:125
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
http://www.securityfocus.com/archive/1/534009/100/0/threaded
http://www.securityfocus.com/bid/71153	Exploit
http://www.ubuntu.com/usn/USN-2433-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/98764
https://support.apple.com/kb/HT205031

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:redhat:tcpdump:3.8.0:::::::*
	cpe:2.3:a:redhat:tcpdump:3.8.2:::::::*
	cpe:2.3:a:redhat:tcpdump:3.9.2:::::::*
	cpe:2.3:a:redhat:tcpdump:3.9.3:::::::*
	cpe:2.3:a:redhat:tcpdump:3.9.4:::::::*
	cpe:2.3:a:redhat:tcpdump:3.9.5:::::::*
	cpe:2.3:a:redhat:tcpdump:3.9.6:::::::*
	cpe:2.3:a:redhat:tcpdump:3.9.7:::::::*
	cpe:2.3:a:redhat:tcpdump:3.9.8:::::::*
	cpe:2.3:a:redhat:tcpdump:4.0.0:::::::*
	cpe:2.3:a:redhat:tcpdump:4.1.0:::::::*
	cpe:2.3:a:redhat:tcpdump:4.1.1:::::::*
	cpe:2.3:a:redhat:tcpdump:4.1.2:::::::*
	cpe:2.3:a:redhat:tcpdump:4.2.1:::::::*
	cpe:2.3:a:redhat:tcpdump:4.3.0:::::::*
	cpe:2.3:a:redhat:tcpdump:4.3.1:::::::*
	cpe:2.3:a:redhat:tcpdump:4.4.0:::::::*
	cpe:2.3:a:redhat:tcpdump:4.5.0:::::::*
	cpe:2.3:a:redhat:tcpdump:4.5.1:::::::*
	cpe:2.3:a:redhat:tcpdump:4.5.2:::::::*
	cpe:2.3:a:redhat:tcpdump:4.6.0:::::::*
	cpe:2.3:a:redhat:tcpdump:4.6.1:::::::*
	cpe:2.3:a:redhat:tcpdump:4.6.2:::::::*

History

No history.

Information

Published : 2014-11-20 17:50

Updated : 2018-10-09 19:54

NVD link : CVE-2014-8769

Mitre link : CVE-2014-8769

CVE.ORG link : CVE-2014-8769

JSON object : View

Products Affected

redhat

tcpdump

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2014-8769", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.4, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-11-20T17:50:06.897", "references": [{"url": "http://advisories.mageia.org/MGASA-2014-0503.html", "source": "cve@mitre.org"}, {"url": "http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html", "source": "cve@mitre.org"}, {"url": "http://lists.opensuse.org/opensuse-updates/2015-02/msg00062.html", "source": "cve@mitre.org"}, {"url": "http://packetstormsecurity.com/files/129157/tcpdump-4.6.2-AOVD-Unreliable-Output.html", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://seclists.org/fulldisclosure/2014/Nov/49", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.debian.org/security/2014/dsa-3086", "source": "cve@mitre.org"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:240", "source": "cve@mitre.org"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:125", "source": "cve@mitre.org"}, {"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/534009/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/71153", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.ubuntu.com/usn/USN-2433-1", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98764", "source": "cve@mitre.org"}, {"url": "https://support.apple.com/kb/HT205031", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access."}, {"lang": "es", "value": "tcpdump 3.8 hasta 4.6.2 podr\u00eda permitir a atacantes remotos obtener informaci\u00f3n sensible de la memoria o causar una denegaci\u00f3n de servicio ( paquetes perdidos o fallo de segmentaci\u00f3n) a trav\u00e9s de un paquete manipulado Ad hoc On-Demand Distance (AODV), que desencadena un acceso a memoria fuera de rango."}], "lastModified": "2018-10-09T19:54:45.917", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:redhat:tcpdump:3.8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50CE25C6-CC5E-487B-A9F5-68BFD83A265E"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:3.8.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F3728265-2920-4840-AD57-06FEAE523DD7"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:3.9.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4582B9B3-8296-4A51-A49E-C1521E6AD55D"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:3.9.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8DAAD66F-8FDC-4EEA-9FED-04197A3E95CB"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:3.9.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F45580E7-2791-4841-AF76-9591440EDE9D"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:3.9.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6EF2BB6-A4E1-403A-95AD-CB4F5C5517A2"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:3.9.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2BADA780-6314-4875-B467-5547BF75C08A"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:3.9.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7DAE5CAC-A078-4F63-9598-9CA511EC0034"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:3.9.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E041494-8649-4BD5-8DF7-816B4C73E6CF"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27D17DA2-A04C-43A4-AE1F-027C9E5EDC85"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9FA963D-E15E-4711-AFE6-10D0D464FB38"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74BFC816-CCFF-495A-BFBA-8296F6FF1E50"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B9298E0-5B24-4FBD-A5A2-D7DCE91FD219"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B797590-4EA3-4144-819D-F55D8B60AC6E"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10639170-0C13-4E2B-A4FA-AB4F9642DD35"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D5EA00F9-54AC-429E-9241-64142102898F"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "653A18E7-DCA6-4FB0-9F16-66B3CB11CE52"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DBB358B0-2043-450E-AB3F-D88CA5156DB5"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8D13172-9D80-4DD5-A749-9A9F95466C27"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6E4628C-DFE6-44AE-9B46-6341318CA483"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C9CC04B-CF1E-4B0E-8D45-B02B1E07E004"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48EDCB25-E42B-4CA1-BB7E-E5CEA9F74DC4"}, {"criteria": "cpe:2.3:a:redhat:tcpdump:4.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D9E7FE0-FA1A-4A46-A408-BDF2D2DE73B5"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

6.4 /10