EIP-2026-102702

PRE-CVE

Nfdump Nfcapd 1.6.14 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102702. PoCs published by Security-Assessment.com.

AI-analyzed exploit summary The exploit demonstrates three distinct vulnerabilities in Nfdump's nfcapd daemon, including two heap overflows (via IPFIX template manipulation) and an infinite loop (via Netflow V9 packet crafting), all leading to denial-of-service conditions. Functional PoC commands are provided for each vulnerability.

Description

Nfdump Nfcapd 1.6.14 - Multiple Vulnerabilities

Exploits (1)

exploitdb WORKING POC

by Security-Assessment.com · textdoslinux

https://www.exploit-db.com/exploits/39800

View Code ZIP pw:eip

The exploit demonstrates three distinct vulnerabilities in Nfdump's nfcapd daemon, including two heap overflows (via IPFIX template manipulation) and an infinite loop (via Netflow V9 packet crafting), all leading to denial-of-service conditions. Functional PoC commands are provided for each vulnerability.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Nfdump <= 1.6.14

No auth needed

Prerequisites: Network access to the target's nfcapd UDP port

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026