Within tcpreplays tcprewrite, a double free vulnerability has been identified in the tcpedit_dlt_cleanup() function within plugins/dlt_plugins.c. This vulnerability can be exploited by supplying a specifically crafted file to the tcprewrite binary. This flaw enables a local attacker to initiate a Denial of Service (DoS) attack.
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Tcpreplay | Broadcom | 4.4.3 (including) | 4.4.3 (including) |
Tcpreplay | Broadcom | 4.4.4 (including) | 4.4.4 (including) |