{"id":"CVE-2017-6429","details":"Buffer overflow in the tcpcapinfo utility in Tcpreplay before 4.2.0 Beta 1 allows remote attackers to have unspecified impact via a pcap file with an over-size packet.","modified":"2026-04-11T03:11:43.514204Z","published":"2017-03-15T15:59:01Z","related":["openSUSE-SU-2024:11426-1"],"references":[{"type":"ADVISORY","url":"https://github.com/appneta/tcpreplay/releases/tag/v4.2.0-beta1"},{"type":"ADVISORY","url":"http://www.securityfocus.com/archive/1/540221/100/0/threaded"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/96579"},{"type":"FIX","url":"https://github.com/appneta/tcpreplay/commit/d689d14dbcd768c028eab2fb378d849e543dcfe9"},{"type":"EVIDENCE","url":"https://github.com/appneta/tcpreplay/issues/278"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/appneta/tcpreplay","events":[{"introduced":"0"},{"last_affected":"58e174ec6b3dc67db8c5f0b86c0fff48fa097744"},{"fixed":"d689d14dbcd768c028eab2fb378d849e543dcfe9"},{"fixed":"2646d69f687d8bb51d4d9f82154b871ff3042d1f"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"4.1.2"}]}}],"versions":["help","v3.4.2","v3.4.3","v3.4.4","v4.0.0","v4.0.0beta1","v4.0.0beta2","v4.0.1","v4.0.2","v4.0.3","v4.0.4","v4.0.5","v4.0.5beta1","v4.0.5beta2","v4.0.5beta3","v4.1.0","v4.1.0beta1","v4.1.0beta2","v4.1.1","v4.1.1-beta2","v4.1.1-beta3","v4.1.2"],"database_specific":{"vanir_signatures_modified":"2026-04-11T03:11:43Z","vanir_signatures":[{"deprecated":false,"signature_type":"Line","id":"CVE-2017-6429-4a7e2c93","digest":{"threshold":0.9,"line_hashes":["232912568138218117953350169471824407623","110038221270985634077250763088442160972","79912016010684209193862046556130100823","184311948071696790366071614029010221552","298519806583232856888192405352187129375","112586572261885681840636320318985128288","7028527816554762184121853635017869999","193170773969594943321672154903495641391"]},"signature_version":"v1","source":"https://github.com/appneta/tcpreplay/commit/2646d69f687d8bb51d4d9f82154b871ff3042d1f","target":{"file":"src/tcprewrite.c"}},{"deprecated":false,"signature_type":"Function","id":"CVE-2017-6429-5112c242","digest":{"function_hash":"39331997201241113006176555769353167484","length":2293},"signature_version":"v1","source":"https://github.com/appneta/tcpreplay/commit/2646d69f687d8bb51d4d9f82154b871ff3042d1f","target":{"function":"rewrite_packets","file":"src/tcprewrite.c"}},{"deprecated":false,"signature_type":"Line","id":"CVE-2017-6429-5a7d4809","digest":{"threshold":0.9,"line_hashes":["281725724443574481629112586016478690515","39914050534657491552246455914744946764","212123640682198271401289884838733816407","185955081791656345592403159214978745600","104050355408684653759002709540171880836","200175187179004183381615722007415191128","261438908669750218030691149261585102021"]},"signature_version":"v1","source":"https://github.com/appneta/tcpreplay/commit/d689d14dbcd768c028eab2fb378d849e543dcfe9","target":{"file":"src/tcpcapinfo.c"}},{"deprecated":false,"signature_type":"Function","id":"CVE-2017-6429-84445cdb","digest":{"function_hash":"116528098751014854197503951958472637041","length":6331},"signature_version":"v1","source":"https://github.com/appneta/tcpreplay/commit/d689d14dbcd768c028eab2fb378d849e543dcfe9","target":{"function":"main","file":"src/tcpcapinfo.c"}}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-6429.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}