Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Contiki through 3.0. When sending an ICMPv6 error message because of invalid extension header options in an incoming IPv6 packet, there is an attempt to remove the RPL extension headers. Because the packet length and the extension header length are unchecked (with respect to the available data) at this stage, and these variables are susceptible to integer underflow, it is possible to construct an invalid extension header that will cause memory corruption issues and lead to a Denial-of-Service condition. This is related to rpl-ext-header.c.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Contiki 数字错误漏洞
Vulnerability Description
Contiki是一套用于IoT(物联网)设备的开源跨平台操作系统。 Contiki through 3.0 存在安全漏洞,该漏洞源于变量是容易整数下溢,可以构造一个无效的扩展头,会导致内存泄露问题,导致拒绝服务条件。
CVSS Information
N/A
Vulnerability Type
N/A