CVE-2017-14266

Опубликовано: 12 сент. 2017

Источник: debian

EPSS Низкий

Описание

tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow vulnerability triggered by a crafted PCAP file, a related issue to CVE-2016-6160.

Пакет	Статус	Версия исправления	Релиз	Тип
tcpreplay	fixed	3.4.4-3		package
tcpreplay	fixed	3.4.4-2+deb8u1	jessie	package
tcpreplay	fixed	3.4.3-2+wheezy2	wheezy	package

Fixed by http://launchpadlibrarian.net/270778908/tcpreplay_3.4.4-2_3.4.4-3.diff.gz
Not a duplicate of CVE-2016-6160 the detailed MITRE description, but both issues
are addressed with the same patch:
Patch enforce-maxpacket.patch addresses the issue

EPSS

Процентиль: 82%

0.01727

Низкий

CVE-2017-14266

CVSS3: 7.8

ubuntu

больше 8 лет назад

tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow vulnerability triggered by a crafted PCAP file, a related issue to CVE-2016-6160.

CVE-2017-14266

CVSS3: 7.8

nvd

больше 8 лет назад

tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow vulnerability triggered by a crafted PCAP file, a related issue to CVE-2016-6160.

GHSA-53p9-pj89-wp44

CVSS3: 7.8

github

больше 3 лет назад

tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow vulnerability triggered by a crafted PCAP file, a related issue to CVE-2016-6160.

EPSS

Процентиль: 82%

0.01727

Низкий