Description

wb2osz/direwolf (Dire Wolf) versions up to and including 1.8, prior to commit 694c954, contain a stack-based buffer overflow vulnerability in the function kiss_rec_byte() located in src/kiss_frame.c. When processing crafted KISS frames that reach the maximum allowed frame length (MAX_KISS_LEN), the function appends a terminating FEND byte without reserving sufficient space in the stack buffer. This results in an out-of-bounds write followed by an out-of-bounds read during the subsequent call to kiss_unwrap(), leading to stack memory corruption or application crashes. This vulnerability may allow remote unauthenticated attackers to trigger a denial-of-service condition.

INFO

Published Date :

2025-12-22T21:30:29.670Z

Last Modified :

2025-12-22T21:53:54.134Z

Source :

VulnCheck
AFFECTED PRODUCTS

The following products are affected by CVE-2025-34457 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-34457.

URL Resource
https://github.com/marlinkcyber/advisories/blob/main/advisories/MCSAID-2025-010-direwolf-stack-buffer-overflow-kiss-frame.md cve-icon cve-icon
https://github.com/wb2osz/direwolf/commit/694c954 cve-icon cve-icon
https://github.com/wb2osz/direwolf/issues/617 cve-icon cve-icon
https://www.vulncheck.com/advisories/wb2osz-direwolf-stack-based-buffer-overflow-dos cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability