PT-2020-15690 · Altran · Picotcp-Ng+1

Published

2020-12-11

Updated

2020-12-14

CVE-2020-24339

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions picoTCP and picoTCP-NG versions through 1.7.0

Description The issue is related to the DNS domain name record decompression functionality in the pico dns decompress name() function, located in pico dns common.c. It does not validate the compression pointer offset values with respect to the actual data present in a DNS response packet. This causes out-of-bounds reads, leading to Denial-of-Service.

Recommendations For picoTCP and picoTCP-NG versions through 1.7.0, consider disabling the pico dns decompress name() function until a patch is available to prevent out-of-bounds reads and Denial-of-Service attacks.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

CVE-2020-24339

Affected Products

Picotcp

Picotcp-Ng

PT-2020-15690 · Altran · Picotcp-Ng+1

CVE-2020-24339

Weakness Enumeration

Related Identifiers

Affected Products

References · 4