Denial of Service and Arbitrary Code Execution Vulnerability in tcpdump's IPv6 Mobility Printer

Denial of Service and Arbitrary Code Execution Vulnerability in tcpdump's IPv6 Mobility Printer

CVE-2015-0261 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.

Learn more about our Cis Benchmark Audit For Print Devices.