The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN. CREATE(Triage):(User=admin) CVE-2018-16451 (https://nvd.nist.gov/vuln/detail/CVE-2018-16451)