← voltar
CVE-2017-1000381

CVE-2017-1000381

EPSS 3.3%
The c-ares function `ares_parse_naptr_reply()`, which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://c-ares.haxx.se/0616.patchhttps://c-ares.haxx.se/adv_20170620.htmlhttp://www.securityfocus.com/bid/99148