CVE-2018-10932

Summary

lldptool version 1.0.1 and older can print a raw, unsanitized attacker controlled buffer when mngAddr information is displayed. This may allow an attacker to inject shell control characters into the buffer and impact the behavior of the terminal.

Affected Software

VendorProductVersion RangeStatus
Intellldptool1.0.1 and olderaffected

Weaknesses

  • CWE-117: CWE-117

ADP Enrichment

CVE Program Container

Additional References

References