nvd-json-data-feeds/CVE-2007/CVE-2007-37xx/CVE-2007-3798.json

{
  "id": "CVE-2007-3798",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2007-07-16T22:30:00.000",
  "lastModified": "2018-10-15T21:30:57.613",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value."
    },
    {
      "lang": "es",
      "value": "Un desbordamiento de enteros en el archivo print-bgp.c en el disector BGP en tcpdump versi\u00f3n 3.9.6 y anteriores, permite a atacantes remotos ejecutar c\u00f3digo arbitrario por medio de TLVs especialmente dise\u00f1ados en un paquete BGP, relacionado a un valor de retorno no comprobado."
    }
  ],
  "vendorComments": [
    {
      "organization": "Red Hat",
      "comment": "This issue does not affect the version of tcpdump shipped in Red Hat Enterprise Linux 2.1 or 3.\n\nRed Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=250275\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw.  More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/",
      "lastModified": "2007-07-31T00:00:00"
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "accessVector": "NETWORK",
          "accessComplexity": "MEDIUM",
          "authentication": "NONE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-189"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*",
              "versionEndIncluding": "3.9.6",
              "matchCriteriaId": "9BFFEF20-AB6E-4D82-81A9-B7AED327540C"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://bugs.gentoo.org/show_bug.cgi?id=184815",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://cvs.tcpdump.org/cgi-bin/cvsweb/tcpdump/print-bgp.c?r1=1.91.2.11&r2=1.91.2.12",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://docs.info.apple.com/article.html?artnum=307179",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://security.freebsd.org/advisories/FreeBSD-SA-07:06.tcpdump.asc",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://security.gentoo.org/glsa/glsa-200707-14.xml",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.449313",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.debian.org/security/2007/dsa-1353",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.digit-labs.org/files/exploits/private/tcpdump-bgp.c",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:148",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.novell.com/linux/security/advisories/2007_16_sr.html",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0368.html",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0387.html",
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://www.securityfocus.com/archive/1/474225/100/0/threaded",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.securityfocus.com/bid/24965",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.securitytracker.com/id?1018434",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.trustix.org/errata/2007/0023/",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.turbolinux.com/security/2007/TLSA-2007-46.txt",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.ubuntu.com/usn/usn-492-1",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-352A.html",
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ]
    },
    {
      "url": "http://www.vupen.com/english/advisories/2007/2578",
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://www.vupen.com/english/advisories/2007/4238",
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9771",
      "source": "cve@mitre.org"
    }
  ]
}