Tcptrack Command Line Parsing Heap Based Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is installed with Tcptrack and is prone to heap based buffer overflow vulnerability.

Impact

Successful exploitation allows attackers to execute arbitrary code via a long command line argument in the LWRES dissector when processing malformed data or packets. Impact Level: System/Application

Solution

Upgrade to Tcptrack 1.4.2 or later, For updates refer to http://www.rhythm.cx/~steve/devel/tcptrack/#gettingit

Insight

The flaw is caused due to error in command line parsing, it is not properly handling long command line argument.

Affected

Tcptrack version prior to 1.4.2

References

http://seclists.org/oss-sec/2011/q3/293
https://bugs.gentoo.org/show_bug.cgi?id=377917

Updated on 2017-03-28

Severity

Classification

CVE CVE-2011-2903
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Mereo 'GET' Request Remote Buffer Overflow Vulnerability
IrfanView Integer Overflow Vulnerability
BigAnt IM Server 'USV' Request Buffer Overflow Vulnerability
VLC Media Player Stack Overflow Vulnerability (Win-Mar09)
VLC Media Player '.RM' File BOF Vulnerability (Linux)

Take action and discover your vulnerabilities