漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
The BACnet Protocol Stack library has an Off-by-one Stack-based Buffer Overflow in tokenizer_string
Vulnerability Description
BACnet Protocol Stack library provides a BACnet application layer, network layer and media access (MAC) layer communications services. In 1.4.2, 1.5.0.rc2, and earlier, an off-by-one stack-based buffer overflow in the ubasic interpreter causes a crash (SIGABRT) when processing string literals longer than the buffer limit. The tokenizer_string function in src/bacnet/basic/program/ubasic/tokenizer.c incorrectly handles null termination for maximum-length strings. It writes a null byte to dest[40] when the buffer size is only 40 (indices 0-39), triggering a stack overflow.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Vulnerability Type
Off-by-one错误
Vulnerability Title
BACnet Protocol Stack 安全漏洞
Vulnerability Description
BACnet Protocol Stack是一个适用于多种平台的,用于提供BACnet应用层、网络层和媒体访问(MAC)层通信服务的库。 BACnet Protocol Stack 1.4.2版本、1.5.0.rc2版本及之前版本存在安全漏洞,该漏洞源于ubasic解释器中存在差一栈缓冲区溢出,可能导致处理超长字符串字面量时崩溃。
CVSS Information
N/A
Vulnerability Type
N/A