N/A

An exploitable denial-of-service vulnerability exists in the UDPRelay functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream Cipher and a local_address, arbitrary UDP packets can cause a FATAL error code path and exit. An attacker can send arbitrary UDP packets to trigger this vulnerability.

N/A

关键功能的认证机制缺失

Shadowsocks-libev 访问控制错误漏洞

Shadowsocks-libev是一款用于嵌入式设备的轻型安全SOCKS5代理。 Shadowsocks-libev 3.3.2版本中的UDPRelay功能存在访问控制错误漏洞。攻击者可通过发送任意UDP数据包利用该漏洞造成拒绝服务。

N/A

N/A