CVE-2019-9747
- EPSS 0.43%
- Veröffentlicht 13.03.2019 19:29:00
- Zuletzt bearbeitet 21.11.2024 04:52:13
In tinysvcmdns through 2018-01-16, a maliciously crafted mDNS (Multicast DNS) packet triggers an infinite loop while parsing an mDNS query. When mDNS compressed labels point to each other, the function uncompress_nlabel goes into an infinite loop try...
CVE-2019-9748
- EPSS 0.51%
- Veröffentlicht 13.03.2019 19:29:00
- Zuletzt bearbeitet 21.11.2024 04:52:13
In tinysvcmdns through 2018-01-16, an mDNS server processing a crafted packet can perform arbitrary data read operations up to 16383 bytes from the start of the buffer. This can lead to a segmentation fault in uncompress_nlabel in mdns.c and a crash ...
CVE-2017-12087
- EPSS 1.69%
- Veröffentlicht 24.04.2018 19:29:00
- Zuletzt bearbeitet 21.11.2024 03:08:48
An exploitable heap overflow vulnerability exists in the tinysvcmdns library version 2016-07-18. A specially crafted packet can make the library overwrite an arbitrary amount of data on the heap with attacker controlled values. An attacker needs send...
CVE-2017-12130
- EPSS 0.73%
- Veröffentlicht 20.01.2018 00:29:00
- Zuletzt bearbeitet 21.11.2024 03:08:53
An exploitable NULL pointer dereference vulnerability exists in the tinysvcmdns library version 2017-11-05. A specially crafted packet can make the library dereference a NULL pointer leading to a server crash and denial of service. An attacker needs ...