Buffer Underwrite Vulnerability in FreeBSD ICMP Reply Packet Construction

Buffer Underwrite Vulnerability in FreeBSD ICMP Reply Packet Construction

CVE-2018-17156 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

In FreeBSD before 11.2-STABLE(r340268) and 11.2-RELEASE-p5, due to incorrectly accounting for padding on 64-bit platforms, a buffer underwrite could occur when constructing an ICMP reply packet when using a non-standard value for the net.inet.icmp.quotelen sysctl.

Learn more about our Web Application Penetration Testing UK.