WRITEUP

WRITEUP

Exploit for CVE-2017-12987 - Tcpdump < 4.9.1 - Out-of-Bounds Read

AI Analysis

This patch adds a test case for CVE-2017-12987, which involves an out-of-bounds read vulnerability in tcpdump when parsing certain 802.11 packets. The test includes a PCAP file and expected output to verify the fix.

Attack Type

DoS

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1499 - Endpoint Denial of Service

Loading exploit code...

Download ZIP Password: eip

Source

Platform Writeup

Files 1

https://github.com/the-tcpdump-group/tcpdump/commit/2ecb9d2c67d9119250c54811a6ce4d0f2ddf44f1

Authors

Kamil Frankowicz Guy Harris

Vulnerability

CVE-2017-12987

Tcpdump < 4.9.1 - Out-of-Bounds Read

CRITICAL

CVSS 9.8