Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-2155

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2015-2155
Last Modified 02 Apr 2015 10:00:41
Published 24 Mar 2015 01:59:08
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-2155

Summary

The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

Vulnerable Systems

Application

  • Tcpdump 4.7.0


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=1201798

BUGTRAQ - 20150309 tcpdump 4.7.2 remote crashes

DEBIAN - DSA-3193

MISC - http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html

SECTRACK - 1031937

SUSE - openSUSE-SU-2015:0616

MANDRIVA - MDVSA-2015:182

MANDRIVA - MDVSA-2015:125

FEDORA - FEDORA-2015-4939

CONFIRM - http://advisories.mageia.org/MGASA-2015-0114.html


Last Updated: 27 May 2016 11:08:17