CVE-2014-9140
Description
Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2 and earlier allows remote attackers to cause a denial of service (crash) cia a crafted PPP packet.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
5.511
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities are fixed in OS X Yosemite 10.10.5 Update | Mac |
| Multiple vulnerabilities are fixed in OS X Yosemite 10.10.5 Combo Update | Mac |
| tcpdump security update(DSA-3193-1) tcpdump_4.3.0-1+deb7u2_i386.deb | Linux |
| tcpdump security update(DSA-3193-1) tcpdump_4.3.0-1+deb7u2_amd64.deb | Linux |
| SUSE-SU-2015:0679-1(SUSE Linux Enterprise Desktop 12 ) tcpdump-4.5.1-7.1.x86_64.rpm | Linux |
| SUSE-SU-2015:0679-1(SUSE Linux Enterprise Desktop 12 ) tcpdump-debuginfo-4.5.1-7.1.x86_64.rpm | Linux |
| SUSE-SU-2015:0679-1(SUSE Linux Enterprise Desktop 12 ) tcpdump-debugsource-4.5.1-7.1.x86_64.rpm | Linux |
| SUSE-SU-2015:0692-1(SUSE Linux Enterprise Desktop 11 SP3 ) tcpdump-3.9.8-1.27.1.x86_64.rpm | Linux |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-600354 | OS X Yosemite 10.10.5 Update |
| PATCH-600458 | OS X Yosemite 10.10.5 Combo Update |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234