CVE-2018-4003

Name of the Vulnerable Software and Affected Versions CUJO Smart Firewall version 7003

Description A heap overflow issue exists due to incorrect handling of string lengths when parsing character strings in mDNS resource records. This can lead to arbitrary code execution in the context of the mdnscap process. An unauthenticated attacker can trigger this issue by sending a specially crafted mDNS message.

Recommendations For CUJO Smart Firewall version 7003, consider disabling the mdnscap binary as a temporary workaround until a patch is available. Restrict access to the mdnscap process to minimize the risk of exploitation.