Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
I Hear U (IHU) 0.5.6 and earlier allows remote attackers to cause (1) a denial of service (infinite loop) via a packet that contains zero in the size field in its header, which is improperly handled by the Receiver::processPacket function; and (2) a denial of service (daemon crash) via an (a) IHU_INFO_INIT or a (b) IHU_INFO_RING packet that does not specify the mode, which is improperly handled by the Player::ring function in Player.cpp.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
I Hear U 多个模块远程拒绝服务漏洞
Vulnerability Description
I Hear U 存在多个模块远程拒绝服务漏洞,远程攻击者(1)借助页眉的包含零字段的信息包导致一个拒绝服务(无限循环),该字段不能被Receiver::processPacket函数正确处理;以及借助(2)(a) IHU_INFO_INIT 或一个(b)不指定模块的IHU_INFO_RING信息包导致拒绝服务请求(守护进程崩溃),该模块不能被Player.cpp中的Player::ring正确处理。
CVSS Information
N/A
Vulnerability Type
N/A