An issue exists in wifipcap/wifipcap.cpp in TCPFLOW up to and including 1.5.0-alpha. There is an integer overflow in the function handle_prism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle_80211, which will result in an out-of-bounds read and may allow access to sensitive memory (or a denial of service).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
digitalcorpora tcpflow |
||
digitalcorpora tcpflow 1.5.0 |
||
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 18.10 |
||
canonical ubuntu linux 16.04 |