CVE-2018-17974

Name of the Vulnerable Software and Affected Versions Tcpreplay version 4.3.0 beta1

Description A heap-based buffer over-read issue was discovered in the dlt en10mb encode() function of the file plugins/dlt en10mb/en10mb.c. This occurs due to inappropriate values in the memmove() function, where the length (pktlen + ctx->l2len) can be larger than the source value (packet + ctx->l2len), because the function fails to ensure the length of a packet is valid. This leads to Denial of Service.

Recommendations For Tcpreplay version 4.3.0 beta1, consider disabling the dlt en10mb encode() function until a patch is available to prevent potential Denial of Service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.