CCN-lite 2.0.0 Beta allows remote malicious users to cause a denial of service (buffer overflow) or possibly have unspecified other impact because the ccnl_ndntlv_prependBlob function in ccnl-pkt-ndntlv.c can be called with wrong arguments. Specifically, there is an incorrect integer data type causing a negative third argument in some cases of crafted TLV data with inconsistent length information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ccn-lite ccn-lite 2.0.0 |