Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In tinysvcmdns through 2018-01-16, an mDNS server processing a crafted packet can perform arbitrary data read operations up to 16383 bytes from the start of the buffer. This can lead to a segmentation fault in uncompress_nlabel in mdns.c and a crash of the server (depending on the memory protection of the CPU and the operating system), or disclosure of memory content via error messages or a server response. NOTE: the product's web site states "This project is un-maintained, and has been since 2013. ... There are known vulnerabilities ... You are advised to NOT use this library for any new projects / products."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
tinysvcmdns 安全漏洞
Vulnerability Description
tinysvcmdns是一个用于服务的组播DNS响应库。 tinysvcmdns 2018-01-16及之前版本中存在安全漏洞。攻击者可借助特制的数据包利用该漏洞造成服务器崩溃或通过错误信息或服务器响应泄露内存内容。
CVSS Information
N/A
Vulnerability Type
N/A