ByteOS Network

NVD Vulnerability Details :

CVE-2007-3798

Modified

Source-cve@mitre.org

Published At-16 Jul, 2007 | 22:30

Updated At-15 Oct, 2024 | 15:35

Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Secondary	3.1	9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary	2.0	6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P

CPE Matches

tcpdump & libpcap

>>tcpdump>>Versions up to 3.9.6(inclusive)

cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*

Canonical Ltd.

>>ubuntu_linux>>6.06

cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*

Canonical Ltd.

>>ubuntu_linux>>6.10

cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*

Canonical Ltd.

>>ubuntu_linux>>7.04

cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*

Debian GNU/Linux

>>debian_linux>>3.1

cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*

Debian GNU/Linux

>>debian_linux>>4.0

cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*

Slackware

>>slackware>>9.0

cpe:2.3:a:slackware:slackware:9.0:*:*:*:*:*:*:*

Slackware

>>slackware>>9.1

cpe:2.3:a:slackware:slackware:9.1:*:*:*:*:*:*:*

Slackware

>>slackware>>10.0

cpe:2.3:a:slackware:slackware:10.0:*:*:*:*:*:*:*

Slackware

>>slackware>>10.1

cpe:2.3:a:slackware:slackware:10.1:*:*:*:*:*:*:*

Slackware

>>slackware>>10.2

cpe:2.3:a:slackware:slackware:10.2:*:*:*:*:*:*:*

Slackware

>>slackware>>11.0

cpe:2.3:a:slackware:slackware:11.0:*:*:*:*:*:*:*

Slackware

>>slackware>>12.0

cpe:2.3:a:slackware:slackware:12.0:*:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>Versions from 5.0(inclusive) to 5.5(exclusive)

cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>Versions from 6.0(inclusive) to 6.1(exclusive)

cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:-:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p1:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p11:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p12:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p13:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p14:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p2:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p3:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p4:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p5:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p7:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p8:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>5.5

cpe:2.3:o:freebsd:freebsd:5.5:p9:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:-:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p1:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p10:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p11:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p12:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p13:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p16:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p17:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p18:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p2:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p4:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p6:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p7:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.1

cpe:2.3:o:freebsd:freebsd:6.1:p9:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.2

cpe:2.3:o:freebsd:freebsd:6.2:-:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.2

cpe:2.3:o:freebsd:freebsd:6.2:p1:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.2

cpe:2.3:o:freebsd:freebsd:6.2:p4:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.2

cpe:2.3:o:freebsd:freebsd:6.2:p5:*:*:*:*:*:*

FreeBSD Foundation

>>freebsd>>6.2

cpe:2.3:o:freebsd:freebsd:6.2:p6:*:*:*:*:*:*

Apple Inc.

>>mac_os_x>>Versions from 10.0.0(inclusive) to 10.4.11(exclusive)

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Apple Inc.

>>mac_os_x_server>>Versions from 10.0.0(inclusive) to 10.4.11(exclusive)

cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-252	Primary	nvd@nist.gov
CWE-252	Secondary	134c704f-9b21-4f2e-91b3-4a467353bcc0

Vendor Statements

Organization : Red Hat

Last Modified : 2007-07-31T00:00:00

This issue does not affect the version of tcpdump shipped in Red Hat Enterprise Linux 2.1 or 3. Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=250275 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/

References

Hyperlink	Source	Resource
http://bugs.gentoo.org/show_bug.cgi?id=184815	cve@mitre.org	Third Party Advisory
http://cvs.tcpdump.org/cgi-bin/cvsweb/tcpdump/print-bgp.c?r1=1.91.2.11&r2=1.91.2.12	cve@mitre.org	Broken Link
http://docs.info.apple.com/article.html?artnum=307179	cve@mitre.org	Broken Link
http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html	cve@mitre.org	Mailing List
http://secunia.com/advisories/26135	cve@mitre.org	Broken Link Vendor Advisory
http://secunia.com/advisories/26168	cve@mitre.org	Broken Link Vendor Advisory
http://secunia.com/advisories/26223	cve@mitre.org	Broken Link Vendor Advisory
http://secunia.com/advisories/26231	cve@mitre.org	Broken Link Vendor Advisory
http://secunia.com/advisories/26263	cve@mitre.org	Broken Link Vendor Advisory
http://secunia.com/advisories/26266	cve@mitre.org	Broken Link Vendor Advisory
http://secunia.com/advisories/26286	cve@mitre.org	Broken Link Vendor Advisory
http://secunia.com/advisories/26395	cve@mitre.org	Broken Link Vendor Advisory
http://secunia.com/advisories/26404	cve@mitre.org	Broken Link Vendor Advisory
http://secunia.com/advisories/26521	cve@mitre.org	Broken Link Vendor Advisory
http://secunia.com/advisories/27580	cve@mitre.org	Broken Link Vendor Advisory
http://secunia.com/advisories/28136	cve@mitre.org	Broken Link Vendor Advisory
http://security.freebsd.org/advisories/FreeBSD-SA-07:06.tcpdump.asc	cve@mitre.org	Third Party Advisory
http://security.gentoo.org/glsa/glsa-200707-14.xml	cve@mitre.org	Third Party Advisory
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.449313	cve@mitre.org	Mailing List Patch
http://www.debian.org/security/2007/dsa-1353	cve@mitre.org	Third Party Advisory
http://www.digit-labs.org/files/exploits/private/tcpdump-bgp.c	cve@mitre.org	Exploit
http://www.mandriva.com/security/advisories?name=MDKSA-2007:148	cve@mitre.org	Third Party Advisory
http://www.novell.com/linux/security/advisories/2007_16_sr.html	cve@mitre.org	Broken Link
http://www.redhat.com/support/errata/RHSA-2007-0368.html	cve@mitre.org	Broken Link
http://www.redhat.com/support/errata/RHSA-2007-0387.html	cve@mitre.org	Broken Link Vendor Advisory
http://www.securityfocus.com/archive/1/474225/100/0/threaded	cve@mitre.org	Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/24965	cve@mitre.org	Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1018434	cve@mitre.org	Broken Link Third Party Advisory VDB Entry
http://www.trustix.org/errata/2007/0023/	cve@mitre.org	Broken Link
http://www.turbolinux.com/security/2007/TLSA-2007-46.txt	cve@mitre.org	Broken Link
http://www.ubuntu.com/usn/usn-492-1	cve@mitre.org	Third Party Advisory
http://www.us-cert.gov/cas/techalerts/TA07-352A.html	cve@mitre.org	Broken Link Third Party Advisory US Government Resource
http://www.vupen.com/english/advisories/2007/2578	cve@mitre.org	Broken Link Vendor Advisory
http://www.vupen.com/english/advisories/2007/4238	cve@mitre.org	Broken Link Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9771	cve@mitre.org	Broken Link

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History