CVE-2018-17156

low-risk

Published 2018-11-28

In FreeBSD before 11.2-STABLE(r340268) and 11.2-RELEASE-p5, due to incorrectly accounting for padding on 64-bit platforms, a buffer underwrite could occur when constructing an ICMP reply packet when using a non-standard value for the net.inet.icmp.quotelen sysctl.

Do I need to act?

0.38% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.9/10 Medium

NETWORK / HIGH complexity

Affected Products (2)

Freebsd

Affected Vendors

Freebsd

References (4)

Third Party Advisory http://www.securityfocus.com/bid/106052

Exploit https://security.freebsd.org/advisories/FreeBSD-EN-18:13.icmp.asc

Third Party Advisory http://www.securityfocus.com/bid/106052

Exploit https://security.freebsd.org/advisories/FreeBSD-EN-18:13.icmp.asc

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 1/34 · Minimal

Exposure 7/34 · Low