CVE-2016-6160 - tcprewrite in tcpreplay before 4.1.2 allows remote attackers to cause a denial of service (segmentat

CVE-2016-6160

Summary

tcprewrite in tcpreplay before 4.1.2 allows remote attackers to cause a denial of service (segmentation fault) via a large frame, a related issue to CVE-2017-14266.

References

Vulnerable Configurations

cpe:2.3:a:broadcom:tcpreplay:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.2:-:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.2:-:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.2:a:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.2:a:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3:beta3:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3:beta3:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3:beta4:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3:beta4:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3:beta5:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3:beta5:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3:beta6:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3:beta6:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4:beta1:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4:beta1:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4:beta3:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4:beta3:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4:beta4:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4:beta4:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4:beta5:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4:beta5:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.4:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.4:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.5:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.5:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.6:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:1.4.6:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.5:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:2.3.5:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta1:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta1:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta10:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta10:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta11:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta11:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta12:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta12:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta13:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta13:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta3:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta3:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta4:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta4:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta5:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta5:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta6:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta6:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta7:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta7:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta8:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta8:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta9:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0:beta9:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0rc1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.0rc1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2.5:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.2.5:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.4.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.4.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.4.4:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:3.4.4:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.0:beta1:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.0:beta1:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.0:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.0:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.5:beta1:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.5:beta1:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.5:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.5:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.5:beta3:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.0.5:beta3:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.0:beta1:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.0:beta1:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.0:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.0:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.1:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.1:beta2:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.1:beta3:*:*:*:*:*:*
cpe:2.3:a:broadcom:tcpreplay:4.1.1:beta3:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 02-04-2022 - 03:30)
Impact:
Exploitability:

CWE

CWE-399

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

confirm	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=829350 https://github.com/appneta/tcpreplay/issues/251
mlist	[oss-security] 20160705 CVE-2016-6160: Segmentation fault in tcprewrite (tcpreplay)

Last major update

02-04-2022 - 03:30

Published

23-01-2017 - 21:59

Last modified

02-04-2022 - 03:30