CVE-2005-1267

Published: Jun 10, 2005Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the decode_prefix4 function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted BGP packet.

Affected (25)

Products: Lbl: Tcpdump · Gentoo: Linux · Mandrakesoft: Mandrake Linux · +2 more

Show all products

Lbl: Tcpdump · Gentoo: Linux · Mandrakesoft: Mandrake Linux · Redhat: Fedora Core · Trustix: Secure Linux

1 product

1 product

1 product

1 product

1 product

Configuration A

15 vulnerable

Vulnerable Software	Affected Versions
Lbl Tcpdump	Version 3.4
Lbl Tcpdump	Version 3.4a6
Lbl Tcpdump	Version 3.5.2
Lbl Tcpdump	Version 3.5
Lbl Tcpdump	Version 3.5_alpha
Lbl Tcpdump	Version 3.6.2
Lbl Tcpdump	Version 3.6.3
Lbl Tcpdump	Version 3.7.1
Lbl Tcpdump	Version 3.7.2
Lbl Tcpdump	Version 3.7
Lbl Tcpdump	Version 3.8.1
Lbl Tcpdump	Version 3.8.2
Lbl Tcpdump	Version 3.8.3
Lbl Tcpdump	Version 3.9.1
Lbl Tcpdump	Version 3.9

Configuration B

10 vulnerable

Vulnerable Software	Affected Versions
Gentoo Linux	All versions
Mandrakesoft Mandrake Linux	Version 10.1
Mandrakesoft Mandrake Linux	Version 10.1
Mandrakesoft Mandrake Linux	Version 10.2
Mandrakesoft Mandrake Linux	Version 10.2
Redhat Fedora Core	Version core_3.0
Redhat Fedora Core	Version core_4.0
Trustix Secure Linux	Version 2.0
Trustix Secure Linux	Version 2.1
Trustix Secure Linux	Version 2.2

References (20)

http://secunia.com/advisories/15634/

Source: secalert@redhat.com

PatchVendor Advisory

http://secunia.com/advisories/17118

Source: secalert@redhat.com

http://www.debian.org/security/2005/dsa-854

Source: secalert@redhat.com

http://www.redhat.com/archives/fedora-announce-list/2005-June/msg00007.html

Source: secalert@redhat.com

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-505.html

Source: secalert@redhat.com

http://www.securityfocus.com/archive/1/430292/100/0/threaded

Source: secalert@redhat.com

http://www.securityfocus.com/bid/13906

Source: secalert@redhat.com

http://www.trustix.org/errata/2005/0028/

Source: secalert@redhat.com

PatchVendor Advisory

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=159208

Source: secalert@redhat.com

PatchVendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11148

Source: secalert@redhat.com

http://secunia.com/advisories/15634/

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://secunia.com/advisories/17118

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2005/dsa-854

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/archives/fedora-announce-list/2005-June/msg00007.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-505.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/430292/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/13906

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.trustix.org/errata/2005/0028/

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=159208

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11148

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.