CVE-2017-3196

Name of the Vulnerable Software and Affected Versions PCAUSA Rawether framework (affected versions not specified)

Description The issue arises from the improper validation of BPF data in the PCAUSA Rawether framework, which allows a malicious BPF program to perform operations on memory outside of its typical bounds when the driver receives network packets. This can be exploited by local attackers to execute arbitrary code with SYSTEM privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.