Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OOBR and OOBW in pcap_ether_aton() in libpcap
Vulnerability Description
pcap_ether_aton() is an auxiliary function in libpcap, it takes a string argument and returns a fixed-size allocated buffer. The string argument must be a well-formed MAC-48 address in one of the supported formats, but this requirement has been poorly documented. If an application calls the function with an argument that deviates from the expected format, the function can read data beyond the end of the provided string and write data beyond the end of the allocated buffer.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
缓冲区上溢读取
Vulnerability Title
libpcap 安全漏洞
Vulnerability Description
libpcap是Tcpdump团队的一款用于网络流量捕获的便携式C/C ++库。 libpcap存在安全漏洞,该漏洞源于pcap_ether_aton函数对输入格式验证不足,可能导致越界读取和写入。
CVSS Information
N/A
Vulnerability Type
N/A