Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. The DNS domain name record decompression functionality in pico_dns_decompress_name() in pico_dns_common.c does not validate the compression pointer offset values with respect to the actual data present in a DNS response packet, causing out-of-bounds reads that lead to Denial-of-Service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Altran picoTCP 和 picoTCP-NG 缓冲区错误漏洞
Vulnerability Description
Altran picoTCP是比利时Altran公司的一个占用空间小的模块化的开源TCP/IP栈,专为嵌入式系统和物联网设计。 picoTCP 和picoTCP-NG 存在缓冲区错误漏洞,该漏洞源于TCP输入数据处理功能无法验证传入TCP数据包的长度,从而使攻击者无法读取范围并执行内存破坏。
CVSS Information
N/A
Vulnerability Type
N/A