Buffer Overflow Vulnerability in Tcpreplay by Appneta
CVE-2020-18976

5.5MEDIUM

Key Information:

Vendor: Broadcom
Status: Tcpreplay
Vendor: CVE Published:; 25 August 2021

What is CVE-2020-18976?

A buffer overflow flaw in Tcpreplay version 4.3.2 allows malicious actors to create a Denial of Service condition by exploiting the 'do_checksum' function within 'checksum.c'. This vulnerability is triggered when a specially crafted pcap file is sent to the 'tcpreplay-edit' binary, leading to potential disruptions in service functionality.

References

https://github.com/appneta/tcpreplay/issues/556

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 25, 2021
Vulnerability Reserved
Aug 13, 2020

Broadcom

What is CVE-2020-18976?

References

CVSS V3.1

Timeline