3 matches found
CVE-2020-24338
creationtimestamp| type| source ---|---|--- 2020-12-12 02:35:58+00:00| seen| https://t.me/cibsecurity/20655 2020-12-12 02:38:59+00:00| seen| https://t.me/cibsecurity/20675 2020-12-12 03:25:24+00:00| seen| https://t.me/cibsecurity/20695 2020-12-12 04:07:13+00:00| seen| https://t.me/cibsecurity/207...
CVE-2020-24338
An issue was discovered in picoTCP through 1.7.0. The DNS domain name record decompression functionality in picodnsdecompressname in picodnscommon.c does not validate the compression pointer offset values with respect to the actual data present in a DNS response packet, causing out-of-bounds writ...
CVE-2020-24338
Summary of CVE-2020-24338 (AMNESIA:33) from provided sources : It affects picoTCP (and picoTCP-NG) up to version 1.7.0, where DNS domain name record decompression in pico_dns_decompress_name() fails to validate compression pointer offsets against DNS response data. This can cause out-of-bounds wr...