CVE-2021-26675

CVE-2021-26675 affects ConnMan’s DNS proxy (dnsproxy) prior to version 1.39. It is a stack-based buffer overflow that could allow a network-adjacent attacker to execute arbitrary code, as described across multiple sources (Arch Linux ASA, openSUSE update, Debian DSA/DLA, Gentoo GLSA). The issue i...

CVE-2021-26675

A stack-based buffer overflow in dnsproxy in ConnMan before 1.39 could be used by network adjacent attackers to execute code...

CVE-2021-26675

A stack-based buffer overflow in dnsproxy in ConnMan before 1.39 could be used by network adjacent attackers to execute code...

CVE-2021-26675

A stack-based buffer overflow in dnsproxy in ConnMan before 1.39 could be used by network adjacent attackers to execute code...

Arbitrary Code Execution

connman is vulnerable to arbitrary code execution. The vulnerability exists through a stack-based buffer overflow in dnsproxy in ConnMan...

PT-2021-2219 · Connman +5 · Connman +5

Name of the Vulnerable Software and Affected Versions: ConnMan versions prior to 1.39 Description: A stack-based buffer overflow in the dnsproxy component of ConnMan could be used by network adjacent attackers to execute code. This issue allows a remote attacker to potentially execute arbitrary...

The vulnerability of the Connman connection manager (“dnsproxy.c”) allows a hacker to cause a service failure or execute arbitrary code.

The vulnerability of the Connman connection manager “dnsproxy.c” is caused by buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to cause a service failure or execute arbitrary code using a specially created text string in the response to a query that includes th...

connman 'src/dnsproxy.c' stack buffer overflow vulnerability

connman is a software that uses d-bus as an inter-process communication mechanism to manage linux network links. A stack buffer overflow vulnerability exists in connman 'src/dnsproxy.c'. An attacker can exploit the vulnerability to execute arbitrary code in the context of an affected application....

DEBIAN-CVE-2017-12865

Stack-based buffer overflow in "dnsproxy.c" in connman 1.34 and earlier allows remote attackers to cause a denial of service crash or execute arbitrary code via a crafted response query string passed to the "name" variable...

CVE-2017-12865

Stack-based buffer overflow in "dnsproxy.c" in connman 1.34 and earlier allows remote attackers to cause a denial of service crash or execute arbitrary code via a crafted response query string passed to the "name" variable...

UBUNTU-CVE-2017-12865

Stack-based buffer overflow in "dnsproxy.c" in connman 1.34 and earlier allows remote attackers to cause a denial of service crash or execute arbitrary code via a crafted response query string passed to the "name" variable...

CVE-2017-12865

Stack-based buffer overflow in "dnsproxy.c" in connman 1.34 and earlier allows remote attackers to cause a denial of service crash or execute arbitrary code via a crafted response query string passed to the "name" variable...

D-Link DSL-2730B Modem - Cross-Site Scripting Injection Stored DnsProxy.cmd

D-Link DSL-2730B Modem - Cross-Site Scripting Injection Stored DnsProxy.cmd Exploit Title: D-Link DSL-2730B Modem dnsProxy.cmd Exploit XSS Injection Stored Date: 11-01-2015 Exploit Author: Mauricio Correa Vendor Homepage: www.dlink.com Hardware version: C1 Version: GE 1.01 Tested on: Windows 8 an...