CVE-2014-8769

tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access.

Published: Nov 20, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-8769
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.4
AV:N/AC:L/Au:N/C:P/I:N/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
redhat / tcpdump	4.6.0	4.6.0.x
redhat / tcpdump	4.3.1	4.3.1.x
redhat / tcpdump	3.8.2	3.8.2.x
redhat / tcpdump	4.5.2	4.5.2.x
redhat / tcpdump	4.5.0	4.5.0.x
redhat / tcpdump	4.1.0	4.1.0.x
redhat / tcpdump	4.0.0	4.0.0.x
redhat / tcpdump	3.9.2	3.9.2.x
redhat / tcpdump	4.1.1	4.1.1.x
redhat / tcpdump	4.3.0	4.3.0.x
redhat / tcpdump	3.9.7	3.9.7.x
redhat / tcpdump	3.9.6	3.9.6.x
redhat / tcpdump	4.5.1	4.5.1.x
redhat / tcpdump	3.9.4	3.9.4.x
redhat / tcpdump	3.8.0	3.8.0.x
redhat / tcpdump	4.1.2	4.1.2.x
redhat / tcpdump	4.6.2	4.6.2.x
redhat / tcpdump	4.6.1	4.6.1.x
redhat / tcpdump	4.4.0	4.4.0.x
redhat / tcpdump	3.9.3	3.9.3.x
redhat / tcpdump	4.2.1	4.2.1.x
redhat / tcpdump	3.9.5	3.9.5.x
redhat / tcpdump	3.9.8	3.9.8.x

Vulnerability Database

289,599

CVE-2014-8769