wolfSSL DoPreSharedKeys PSK Identity Buffer Overflow (CVE-2019-11873)

A buffer overflow vulnerability exists in wolfSSL embedded SSL/TLS library. The vulnerability is due to improper validation of PSK identity size in the requests. A remote attacker could exploit this vulnerability by sending maliciously crafted requests to a target server. Successful exploitation ...

CVE-2019-11873

creationtimestamp| type| source ---|---|--- 2019-05-23 13:53:16+00:00| seen| https://t.me/cvemitreorg/176...

CVE-2019-11873

wolfSSL 4.0.0 has a Buffer Overflow in DoPreSharedKeys in tls13.c when a current identity size is greater than a client identity size. An attacker sends a crafted hello client packet over the network to a TLSv1.3 wolfSSL server. The length fields of the packet: record length, client hello length,...

CVE-2019-11873

wolfSSL 4.0.0 has a Buffer Overflow in DoPreSharedKeys in tls13.c when a current identity size is greater than a client identity size. An attacker sends a crafted hello client packet over the network to a TLSv1.3 wolfSSL server. The length fields of the packet: record length, client hello length,...

CVE-2019-11873

WolfSSL 4.0.0 is affected by a DoPreSharedKeys PSK Identity buffer overflow in tls13.c when identity sizes are mis-sized (max values 2^16). A crafted TLSv1.3 ClientHello could overflow undefined RAM with ~65 KB of attack data, potentially enabling remote code execution. Exploitation details are d...

CVE-2019-11873

wolfSSL 4.0.0 has a Buffer Overflow in DoPreSharedKeys in tls13.c when a current identity size is greater than a client identity size. An attacker sends a crafted hello client packet over the network to a TLSv1.3 wolfSSL server. The length fields of the packet: record length, client hello length,...