Vulnerabilities > CVE-2017-1000458 - Out-of-bounds Write vulnerability in BRO 2.5.2

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

bro

CWE-787

critical

NVD

Published: 2018-01-02

Updated: 2018-01-16

Summary

Bro before Bro v2.5.2 is vulnerable to an out of bounds write in the ContentLine analyzer allowing remote attackers to cause a denial of service (crash) and possibly other exploitation.

Vulnerable Configurations

Part	Description	Count
Application	Bro BRO BRO 2.5.2	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/bro/bro/commit/6c0f101a62489b1c5927b4ed63b0e1d37db40282
https://bro-tracker.atlassian.net/browse/BIT-1856