cbcvebase.
CVE-2018-18407
published 2018-10-17

CVE-2018-18407: A heap-based buffer over-read was discovered in the tcpreplay-edit binary of Tcpreplay 4.3.0 beta1, during the incremental checksum operation. The issue gets…

PriorityP418medium5.5CVSS 3.0
AVLACLPRNUIRSUCNINAH
EPSS
1.24%
65.4th percentile
A heap-based buffer over-read was discovered in the tcpreplay-edit binary of Tcpreplay 4.3.0 beta1, during the incremental checksum operation. The issue gets triggered in the function csum_replace4() in incremental_checksum.h, causing a denial of service.

Affected

12 ranges
VendorProductVersion rangeFixed in
broadcomtcpreplay
broadcomtcpreplay>= 0 < 4.3.1-14.3.1-1
broadcomtcpreplay>= 0 < 4.3.1-14.3.1-1
broadcomtcpreplay>= 0 < 4.3.1-14.3.1-1
broadcomtcpreplay>= 0 < 4.3.1-14.3.1-1
broadcomtcpreplay>= 0 < 3.4.4-2+deb8u1ubuntu0.1~esm23.4.4-2+deb8u1ubuntu0.1~esm2
broadcomtcpreplay>= 0 < 4.2.6-1ubuntu0.1~esm44.2.6-1ubuntu0.1~esm4
broadcomtcpreplay>= 0 < 4.3.2-1ubuntu0.1~esm24.3.2-1ubuntu0.1~esm2
broadcomtcpreplay>= 0 < 4.3.4-1ubuntu0.1~esm14.3.4-1ubuntu0.1~esm1
debiantcpreplay< tcpreplay 4.3.1-1 (bookworm)tcpreplay 4.3.1-1 (bookworm)
fedoraprojectfedora
fedoraprojectfedora

CVSS provenance

nvdv3.05.5MEDIUMCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv7.5HIGH
vendor_ubuntu7.5HIGH
vendor_debian5.5MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.