### [CVE-2017-8289](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8289)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Stack-based buffer overflow in the ipv6_addr_from_str function in sys/net/network_layer/ipv6/addr/ipv6_addr_from_str.c in RIOT prior to 2017-04-25 allows local attackers, and potentially remote attackers, to cause a denial of service or possibly have unspecified other impact via a malformed IPv6 address.

### POC

#### Reference
- https://github.com/RIOT-OS/RIOT/issues/6840
- https://github.com/RIOT-OS/RIOT/pull/6961
- https://github.com/RIOT-OS/RIOT/pull/6962

#### Github
No PoCs found on GitHub currently.