lwip project lwip vulnerabilities and exploits

(subscribe to this query)

resolv.c in the DNS resolver in uIP, and dns.c in the DNS resolver in lwIP 1.4.1 and previous versions, does not use random values for ID fields and source ports of DNS query packets, which makes it easier for man-in-the-middle malicious users to conduct cache-poisoning attacks v...

Lwip Project Lwip

A buffer overflow vulnerability in the icmp6_send_response_with_addrs_and_netif() function of Free Software Foundation lwIP version git head allows malicious users to access sensitive information via a crafted ICMPv6 packet.

Lwip Project Lwip -

A buffer overflow vulnerability in the zepif_linkoutput() function of Free Software Foundation lwIP git head version and version 2.1.2 allows malicious users to access sensitive information via a crafted 6LoWPAN packet.

Lwip Project Lwip 2.1.2

prebuild-lwip is a module for comprehensive, fast, and simple image processing and manipulation. prebuild-lwip downloads resources over HTTP, which leaves it vulnerable to MITM attacks.

Prebuild-lwip Project Prebuild-lwip

eap.c in pppd in ppp 2.4.2 up to and including 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.

Point-to-point Protocol Project Point-to-point Protocol Wago Pfc Firmware Debian Debian Linux 9.0 Debian Debian Linux 10.0 Canonical Ubuntu Linux 18.04 Canonical Ubuntu Linux 19.04 Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 16.04 Canonical Ubuntu Linux 12.04

6 Github repositories

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook