Heap-Based Buffer Over-Read Vulnerability in Tcpreplay 4.3.0 beta1

CVE-2018-18407 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

A heap-based buffer over-read was discovered in the tcpreplay-edit binary of Tcpreplay 4.3.0 beta1, during the incremental checksum operation. The issue gets triggered in the function csum_replace4() in incremental_checksum.h, causing a denial of service.

Learn more about our Web Application Penetration Testing UK.