tcpdump before 4.9.3 has a heap-based buffer over-read related to aoe_print in print-aoe.c and lookup_emem in addrtoname.c

Disclosed: 2021-07-23 05:14:50 By dotsecurity To ibb

Medium

Vulnerability Details

There seems to be a heap-based buffer overread while running tcpdump on a crafted pcap file. A similar behavior is seen when tcpdump is listening on an interface and the contents of this file is relayed over the network. Please find the detailed report on github https://github.com/the-tcpdump-group/tcpdump/issues/645 CVE: https://nvd.nist.gov/vuln/detail/CVE-2017-16808 ## Impact Heap Over Read

Actions

View on HackerOne

Report Stats

Report ID: 831353
State: Closed
Substate: resolved
Upvotes: 12

tcpdump before 4.9.3 has a heap-based buffer over-read related to aoe_print in print-aoe.c and lookup_emem in addrtoname.c

Vulnerability Details

Actions

Report Stats

Share this report