Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in picoTCP through 1.7.0. The DNS domain name record decompression functionality in pico_dns_decompress_name() in pico_dns_common.c does not validate the compression pointer offset values with respect to the actual data present in a DNS response packet, causing out-of-bounds writes that lead to Denial-of-Service and Remote Code Execution.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
picoTCP 缓冲区错误漏洞
Vulnerability Description
Altran EESY Belgium Picotcp是Altran EESY Belgium社区的一个为实时系统提供TCP/IP协议支持的软件。 picoTCP 存在缓冲区错误漏洞,该漏洞源于解析域名的函数缺少边界检查,这使得攻击者可以用精心设计的DNS包破坏内存。
CVSS Information
N/A
Vulnerability Type
N/A