Buffer Overflow Vulnerability in CCN-lite 2.0.0 Beta

Buffer Overflow Vulnerability in CCN-lite 2.0.0 Beta

CVE-2018-7039 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

CCN-lite 2.0.0 Beta allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact because the ccnl_ndntlv_prependBlob function in ccnl-pkt-ndntlv.c can be called with wrong arguments. Specifically, there is an incorrect integer data type causing a negative third argument in some cases of crafted TLV data with inconsistent length information.

Learn more about our Web Application Penetration Testing UK.