Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
emdns_resolve_raw in emdns.c in emdns through fbd1eef calls strlen with an input that may not be '\0' terminated, leading to a stack-based buffer over-read. This can be triggered by a remote adversary that can send DNS requests to the emdns server. The impact could vary depending on the system libraries, compiler, and processor architecture. Code before be565c3 is unaffected.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
emdns 安全漏洞
Vulnerability Description
emdns是Michael Santos个人开发者的一款 DNS 软件。 emdns be565c3之前版本存在安全漏洞,该漏洞源于emdns.c 中的 emdns_resolve_raw 通过 fbd1eef 调用 strlen,其输入可能不会以 终止,从而导致基于堆栈的缓冲区过度读取。
CVSS Information
N/A
Vulnerability Type
N/A