WRITEUP

WRITEUP

Exploit for CVE-2017-12993 - Tcpdump < 4.9.1 - Out-of-Bounds Read

AI Analysis

This patch addresses CVE-2017-12993, a buffer over-read vulnerability in tcpdump's Juniper protocol dissector. It adds bounds checks (ND_TCHECK) to prevent out-of-bounds reads and includes test cases with malformed packets.

Attack Type

DoS

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1499 - Endpoint Denial of Service

Loading exploit code...

Download ZIP Password: eip

Source

Platform Writeup

Type patch

Files 1

https://github.com/the-tcpdump-group/tcpdump/commit/b534e304568585707c4a92422aeca25cf908ff02

Authors

Guy Harris

Vulnerability

CVE-2017-12993

Tcpdump < 4.9.1 - Out-of-Bounds Read

CRITICAL

CVSS 9.8