Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In MatrixSSL 3.8.3 Open through 4.2.1 Open, the DTLS server mishandles incoming network messages leading to a heap-based buffer overflow of up to 256 bytes and possible Remote Code Execution in parseSSLHandshake in sslDecode.c. During processing of a crafted packet, the server mishandles the fragment length value provided in the DTLS message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
INSIDE Secure MatrixSSL 缓冲区错误漏洞
Vulnerability Description
INSIDE Secure MatrixSSL是法国INSIDE Secure公司的一个针对小型应用程序和设备而设计的嵌入式、开源SSLv3协议栈。 INSIDE Secure MatrixSSL 3.8.3 Open版本至4.2.1 Open版本中存在安全漏洞,该漏洞源于DTLS服务器没有正确处理进入的网络消息。攻击者可借助特制的数据包利用该漏洞执行代码。
CVSS Information
N/A
Vulnerability Type
N/A