Primary

Context

Tcpreplay Denial-of-Service Vulnerability in Tcpedit Dlt Getplugin Function

Vulnerability

Patched

A denial-of-service vulnerability has been identified in Tcpreplay version 4.5.1. The issue arises in the Tcpedit Dlt Getplugin function within the Dlt Utils source file, where a local attacker can cause a segmentation fault by using a crafted file. This vulnerability was introduced by improper handling of certain input, leading to invalid memory access.

Impact

Exploitation of this vulnerability causes a segmentation fault, leading to a crash of the Tcpreplay application.

Reproduction

The vulnerability can be reproduced by compiling Tcpreplay with the default configuration, then using the 'tcprewrite' tool with specific Ethernet MAC address options and a crafted input file that triggers the denial-of-service condition. The AddressSanitizer can be used to verify the segmentation fault caused by the vulnerability.

Remediation

Users can upgrade to Tcpreplay version 4.5.0-beta1 or later, where this vulnerability has been addressed.

Added: Feb 10, 2026, 4:19 PM

Updated: Feb 11, 2026, 12:51 AM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

0.6

exploitability

4.6

remediation

7.7

relevance

2.8

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

0.6

exploitability

4.6

remediation

7.7

relevance

2.8

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tcpreplay Denial-of-Service Vulnerability in Tcpedit Dlt Getplugin Function

Vulnerability

Impact

Reproduction

Remediation

Affected Products

appneta tcpreplay

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating