Security Advisory

CVE-2019-1000006

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-02-04 21:00:00
Last updated 2024-08-05 03:00:19
Assigner mitre
State PUBLISHED

Description

RIOT RIOT-OS version after commit 7af03ab624db0412c727eed9ab7630a5282e2fd3 contains a Buffer Overflow vulnerability in sock_dns, an implementation of the DNS protocol utilizing the RIOT sock API that can result in Remote code executing. This attack appears to be exploitable via network connectivity.