CVE-2023-50434

emdnsresolveraw in emdns.c in emdns through fbd1eef calls strlen with an input that may not be '\0' terminated, leading to a stack-based buffer over-read. This can be triggered by a remote adversary that can send DNS requests to the emdns server. The impact could vary depending on the system...

CVE-2023-50434

emdnsresolveraw in emdns.c in emdns through fbd1eef calls strlen with an input that may not be '\0' terminated, leading to a stack-based buffer over-read. This can be triggered by a remote adversary that can send DNS requests to the emdns server. The impact could vary depending on the system...

CVE-2023-50434

emdnsresolveraw in emdns.c in emdns through fbd1eef calls strlen with an input that may not be '\0' terminated, leading to a stack-based buffer over-read. This can be triggered by a remote adversary that can send DNS requests to the emdns server. The impact could vary depending on the system...

CVE-2023-50434

emdnsresolveraw in emdns.c in emdns through fbd1eef calls strlen with an input that may not be '\0' terminated, leading to a stack-based buffer over-read. This can be triggered by a remote adversary that can send DNS requests to the emdns server. The impact could vary depending on the system...

emdns 安全漏洞

emdns is a DNS software by the individual developer Michael Santos. A security vulnerability exists in versions prior to emdns be565c3, which stems from emdnsresolveraw in emdns.c calling strlen via fbd1eef, whose input may not terminate with a termination, resulting in an over-read of a...

PT-2024-13939 · Emdns · Emdns

Name of the Vulnerable Software and Affected Versions: emdns versions through fbd1eef Description: The issue arises from the emdns resolve raw function in emdns.c, which calls strlen with an input that may not be 0 terminated, leading to a stack-based buffer over-read. This can be triggered by a...