CVE-2020-8036

HIGH

tcpdump 4.10.0-PRE-GIT - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-8036. PoCs published by yan5ui.

AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2020-8036, targeting a vulnerability in tcpdump's IPv6 extension header processing. The exploit includes modified source code for tcpdump, specifically in files like `print-ip6.c` and `print-ip6opts.c`, which handle IPv6 packet parsing and could be manipulated to trigger the vulnerability.

Description

The tok2strbuf() function in tcpdump 4.10.0-PRE-GIT was used by the SOME/IP dissector in an unsafe way.

Exploits (1)

nomisec WORKING POC

by yan5ui · poc

https://github.com/yan5ui/ENV-CVE-2020-8036

View Code ZIP pw:eip

This repository contains a functional exploit PoC for CVE-2020-8036, targeting a vulnerability in tcpdump's IPv6 extension header processing. The exploit includes modified source code for tcpdump, specifically in files like `print-ip6.c` and `print-ip6opts.c`, which handle IPv6 packet parsing and could be manipulated to trigger the vulnerability.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: tcpdump (versions affected by CVE-2020-8036)

No auth needed

Prerequisites: Network access to send crafted IPv6 packets · Target system running vulnerable tcpdump version

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Jun 18, 2026 Full analysis →

References (1)

Core 1

Core References

Patch, Third Party Advisory x_refsource_misc

https://github.com/the-tcpdump-group/tcpdump/commit/e2256b4f2506102be2c6f7976f84f0d607c53d43

View Patch ZIP pw:eip

Scores

CVSS v3 7.5

EPSS 0.0145

EPSS Percentile 69.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-125

Status published

Products (1)

tcpdump/tcpdump 4.10.0

Published Nov 04, 2020

Tracked Since Feb 18, 2026