CVE-2018-19519

low-risk

Published 2018-11-25

In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization.

Do I need to act?

-

0.38% chance of exploitation

EPSS score — low exploit probability

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

5

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Tcpdump

Affected Vendors

Tcpdump

References (18)

Third Party Advisory http://www.securityfocus.com/bid/106098

https://access.redhat.com/errata/RHSA-2019:3976

Exploit https://github.com/zyingp/temp/blob/master/tcpdump.md

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44516

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://usn.ubuntu.com/4252-1/

https://usn.ubuntu.com/4252-2/

Third Party Advisory http://www.securityfocus.com/bid/106098

https://access.redhat.com/errata/RHSA-2019:3976

Exploit https://github.com/zyingp/temp/blob/master/tcpdump.md

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44516

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://usn.ubuntu.com/4252-1/

https://usn.ubuntu.com/4252-2/

24

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 1/34 · Minimal

Exposure 5/34 · Minimal