CVE-2005-1279
tcpdump - denial of service
EPSS 56.8%
Description
tcpdump 3.8.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted (1) BGP packet, which is not properly handled by RT_ROUTING_INFO, or (2) LDP packet, which is not properly handled by the ldp_print function.
How to fix CVE-2005-1279
To remediate CVE-2005-1279, upgrade the affected package to a fixed version below.
- Debian/tcpdump—upgrade to 3.8.3-4 or later
- Debian/tcpdump—upgrade to 3.6.2-2.9 or later
Is CVE-2005-1279 being exploited?
Likely — EPSS is 56.8%, placing CVE-2005-1279 in the top tier of vulnerabilities by exploitation probability. Prioritise patching.
Affected packages (2)
- from 0, < 3.8.3-4
- from 0, < 3.6.2-2.9