Out-of-Bounds Write Vulnerability in tcpdump's SMB Protocol Decoder
CVE-2023-1801

6.5MEDIUM

Key Information:

Vendor

The Tcpdump Group

Status
Tcpdump
Vendor
CVE Published:
7 April 2023

What is CVE-2023-1801?

The SMB protocol decoder in tcpdump version 4.99.3 is susceptible to an out-of-bounds write condition due to improper handling of crafted network packets. This vulnerability could allow an attacker to exploit the mismanagement of memory, potentially leading to arbitrary code execution or crashes. Users are urged to update their tcpdump installations to the latest patched version to mitigate any risks associated with this issue.

Affected Version(s)

tcpdump 4.99.3

References

https://github.com/the-tcpdump-group/tcpdump/commit/7578e...
patch
https://github.com/the-tcpdump-group/tcpdump/commit/03c03...
patch
https://lists.fedoraproject.org/archives/list/package-ann...

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.