Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An exploitable denial-of-service vulnerability exists in the resource allocation handling of Videolabs libmicrodns 0.1.0. When encountering errors while parsing mDNS messages, some allocated data is not freed, possibly leading to a denial-of-service condition via resource exhaustion. An attacker can send one mDNS message repeatedly to trigger this vulnerability through the function rr_read_RR [5] reads the current resource record, except for the RDATA section. This is read by the loop at in rr_read. For each RR type, a different function is called. When the RR type is 0x10, the function rr_read_TXT is called at [6].
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
N/A
Vulnerability Title
Videolabs libmicrodns 资源管理错误漏洞
Vulnerability Description
Videolabs libmicrodns是法国Videolabs实验室的一款跨平台的mDNS(多播DNS)解析器。 Videolabs libmicrodns 0.1.0版本中的资源分配处理存在资源管理错误漏洞,该漏洞源于在解析mDNS消息时,程序没有释放已分配的数据。远程攻击者可通过重复发送mDNS消息利用该漏洞导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A