The code that processes DNS responses in uIP up to and including 1.0, as used in Contiki and Contiki-NG, does not check whether the number of responses specified in the DNS packet header corresponds to the response data available in the DNS packet, leading to an out-of-bounds read and Denial-of-Service in resolv.c.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
uip_project uip |