Lucene search

K
cvelistMitreCVELIST:CVE-2018-17582
HistorySep 28, 2018 - 9:00 a.m.

CVE-2018-17582

2018-09-2809:00:00
mitre
www.cve.org

7.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.5%

Tcpreplay v4.3.0 beta1 contains a heap-based buffer over-read. The get_next_packet() function in the send_packets.c file uses the memcpy() function unsafely to copy sequences from the source buffer pktdata to the destination (*prev_packet)->pktdata. This will result in a Denial of Service (DoS) and potentially Information Exposure when the application attempts to process a file.

7.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.5%