mirror of
https://github.com/0xMarcio/cve.git
synced 2026-04-21 18:16:01 +02:00
0xMarcio
835 B
835 B
CVE-2017-13704
Description
In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's (0xffffffffffffffff in 64 bit platforms), making dnsmasq crash.
POC
Reference
- http://thekelleys.org.uk/dnsmasq/CHANGELOG
- https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html
Github
No PoCs found on GitHub currently.