Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An exploitable code execution vulnerability exists in the label-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing compressed labels in mDNS messages, the rr_decode function's return value is not checked, leading to a double free that could be exploited to execute arbitrary code. An attacker can send an mDNS message to trigger this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
Videolabs libmicrodns 资源管理错误漏洞
Vulnerability Description
Videolabs libmicrodns是法国Videolabs实验室的一款跨平台的mDNS(多播DNS)解析器。 Videolabs libmicrodns 0.1.0版本中的标签解析功能存在安全漏洞,该漏洞源于程序在解析mDNS消息中的压缩标签时,不会检查‘rr_decode’函数的返回值。攻击者可利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A