CVE-2007-3798
critical-risk
Published 2007-07-16
Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value.
Do I need to act?
!
72.7% chance of exploitation in next 30 days
EPSS score — higher than 27% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10
Critical
NETWORK
/ LOW complexity
Affected Products (20)
References (70)
Third Party Advisory
http://bugs.gentoo.org/show_bug.cgi?id=184815
Broken Link
http://secunia.com/advisories/26135
Broken Link
http://secunia.com/advisories/26168
Broken Link
http://secunia.com/advisories/26223
Broken Link
http://secunia.com/advisories/26231
Broken Link
http://secunia.com/advisories/26263
Broken Link
http://secunia.com/advisories/26266
Broken Link
http://secunia.com/advisories/26286
Broken Link
http://secunia.com/advisories/26395
Broken Link
http://secunia.com/advisories/26404
Broken Link
http://secunia.com/advisories/26521
Broken Link
http://secunia.com/advisories/27580
Broken Link
http://secunia.com/advisories/28136
Third Party Advisory
http://security.freebsd.org/advisories/FreeBSD-SA-07:06.tcpdump.asc
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200707-14.xml
Third Party Advisory
http://www.debian.org/security/2007/dsa-1353
and 50 more references
83
/ 100
critical-risk
Severity
32/34 · Critical
Exploitability
26/34 · High
Exposure
25/34 · High