Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple integer overflows in Dibbler 0.6.0 allow remote attackers to cause a denial of service (daemon crash) via packets containing options with large lengths, which trigger attempts at excessive memory allocation, as demonstrated by (1) the TSrvMsg constructor in SrvMessages/SrvMsg.cpp; the (2) TClntMsg, (3) TClntOptIAAddress, (4) TClntOptIAPrefix, (5) TOptVendorSpecInfo, and (6) TOptOptionRequest constructors; and the (7) TRelIfaceMgr::decodeRelayRepl, (8) TRelMsg::decodeOpts, and (9) TSrvIfaceMgr::decodeRelayForw methods.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Dibbler多个内存破坏漏洞
Vulnerability Description
Dibbler是一种可移植的DHCPv6协议实现。 Dibbler在处理带有畸形数据的报文时存在多个内存破坏漏洞,远程攻击者可能利用这些漏洞导致服务崩溃或控制服务器。 Dibbler在处理带有超长长度值的选项、无效长度或畸形IA_NA选项的报文请求时存在内存破坏问题,可以导致堆溢出及内存访问错误。
CVSS Information
N/A
Vulnerability Type
N/A