Stack-based Buffer Overflow in Contiki-NG JSON Parsing Function

Stack-based Buffer Overflow in Contiki-NG JSON Parsing Function

CVE-2018-20579 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:P

Contiki-NG before 4.2 has a stack-based buffer overflow in the push function in os/lib/json/jsonparse.c that allows an out-of-bounds write of an '{' or '[' character.

Learn more about our Web Application Penetration Testing UK.