PT-2018-17864 · Ccn-Lite · Ccn-Lite
Mfrey
+1
·
Published
2018-02-14
·
Updated
2018-03-15
·
CVE-2018-7039
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
CCN-lite version 2.0.0 Beta
Description
The issue allows remote attackers to cause a denial of service or possibly have other unspecified impacts. This is due to the
ccnl ndntlv prependBlob function in ccnl-pkt-ndntlv.c being called with incorrect arguments, specifically an incorrect integer data type that can result in a negative third argument when processing crafted TLV data with inconsistent length information.Recommendations
For CCN-lite version 2.0.0 Beta, ensure that the
ccnl ndntlv prependBlob function is called with correct arguments to prevent the denial of service or other potential impacts. As a temporary workaround, consider validating the TLV data for consistent length information before processing it with the ccnl ndntlv prependBlob function.Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ccn-Lite