Описание
Altran picoTCP through 1.7.0 allows memory corruption (and subsequent denial of service) because of an integer overflow in pico_ipv6_alloc when processing large ICMPv6 packets. This affects installations with Ethernet support in which a packet size greater than 65495 may occur.
Ссылки
- ExploitThird Party Advisory
- Release Notes
- ExploitThird Party Advisory
- Release Notes
Уязвимые конфигурации
Конфигурация 1Версия до 1.7.0 (включая)
cpe:2.3:a:altran:picotcp:*:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00086
Низкий
7.5 High
CVSS3
Дефекты
CWE-190
CWE-190
Связанные уязвимости
CVSS3: 7.5
github
почти 3 года назад
Altran picoTCP through 1.7.0 allows memory corruption (and subsequent denial of service) because of an integer overflow in pico_ipv6_alloc when processing large ICMPv6 packets. This affects installations with Ethernet support in which a packet size greater than 65495 may occur.
EPSS
Процентиль: 25%
0.00086
Низкий
7.5 High
CVSS3
Дефекты
CWE-190
CWE-190