Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1279

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1279
Last Modified 10 Sep 2008 03:10:10
Published 17 Jul 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1279

Summary

Buffer overflow in print-rx.c of tcpdump 3.x (probably 3.6x) allows remote attackers to cause a denial of service and possibly execute arbitrary code via AFS RPC packets with invalid lengths that trigger an integer signedness error, a different vulnerability than CVE-2000-1026.

Vulnerable Systems

Application

  • Lbl Tcpdump 3.6.2


References

CERT-VN - VU#797201

REDHAT - RHSA-2001:089

BID - 3065

MANDRAKE - MDKSA-2002:032

XF - tcpdump-afs-rpc-bo(7006)

CONECTIVA - CLA-2002:480

FREEBSD - FreeBSD-SA-01:48

CALDERA - CSSA-2002-025.0


Last Updated: 27 May 2016 10:36:36