CVE-2019-1010220 Information

Description

tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer Return Address etc. on stack. The component is: line 234: \ND_PRINT((ndo \s\ buf));\ in function named \print_prefix\ in \print-hncp.c. The attack vector is: The victim must open a specially crafted pcap file.

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Reference

http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00065.html http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00050.html http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00053.html https://github.com/the-tcpdump-group/tcpdump/blob/master/print-hncp.c https://github.com/the-tcpdump-group/tcpdump/blob/tcpdump-4.9.2/print-hncp.c https://github.com/the-tcpdump-group/tcpdump/commits/master/print-hncp.c https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/62XY42U6HY3H2APR5EHNWCZ7SAQNMMJN/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNYXF3IY2X65IOD422SA6EQUULSGW7FN/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R2UDPOSGVJQIYC33SQBXMDXHH4QDSDMU/ https://usn.ubuntu.com/4252-1/ https://usn.ubuntu.com/4252-2/

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

LOW

Availability Impact

NONE

Base Score

NONE

Base Severity

3.3