Recent CVE
Browse CVE per vendor
Browse CWEs
About
CVE-Search
CVE-2023-1801
ID
CVE-2023-1801
Summary
The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds write when decoding a crafted network packet.
References
https://github.com/the-tcpdump-group/tcpdump/commit/03c037bbd75588beba3ee09f26d17783d21e30bc
https://github.com/the-tcpdump-group/tcpdump/commit/7578e1c04ee280dda50c4c2813e7d55f539c6501
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KOA2BJFERAC3VRQIRHJOWN4HZY4ZA7CH/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WYL5DEVHRJYF2CM5LTCZKEYFYDZAIZSN/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLLZCG23MU6O4QOG2CX3DLEL3YXP6LAI/
https://support.apple.com/kb/HT213844
https://support.apple.com/kb/HT213845
Vulnerable Configurations
cpe:2.3:a:tcpdump:tcpdump:4.99.3:*:*:*:*:*:*:*
cpe:2.3:a:tcpdump:tcpdump:4.99.3:*:*:*:*:*:*:*
CVSS
Base:
None
Impact:
Exploitability:
CWE
CWE-787
CAPEC
Access
Vector
Complexity
Authentication
Impact
Confidentiality
Integrity
Availability
Last major update
23-12-2023 - 07:15
Published
07-04-2023 - 21:15
Last modified
23-12-2023 - 07:15
Back to Top