WRITEUP

WRITEUP

Exploit for CVE-2017-12899 - Tcpdump < 4.9.1 - Out-of-Bounds Read

AI Analysis

This patch adds a test case for CVE-2017-12899, a DECnet out-of-bounds read vulnerability in tcpdump. It includes a PCAP file and expected output to verify the fix for handling malformed DECnet packets.

Attack Type

DoS

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1499 - Endpoint Denial of Service

Loading exploit code...

Download ZIP Password: eip

Source

Platform Writeup

Files 1

https://github.com/the-tcpdump-group/tcpdump/commit/f96003b21e2abfbba59b926b10a7f9bc7d11e36c

Authors

Brian Carpenter Guy Harris

Vulnerability

CVE-2017-12899

Tcpdump < 4.9.1 - Out-of-Bounds Read

CRITICAL

CVSS 9.8