Vulnerabilities > CCN Lite > CCN Lite > 0.3.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-02-07 | CVE-2017-12473 | Improper Input Validation vulnerability in Ccn-Lite ccnl_ccntlv_bytes2pkt in CCN-lite allows context-dependent attackers to cause a denial of service (application crash) via vectors involving packets with "wrong L values." | 5.0 |
2018-02-07 | CVE-2017-12472 | NULL Pointer Dereference vulnerability in Ccn-Lite ccnl-ext-mgmt.c in CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact by leveraging missing NULL pointer checks after ccnl_malloc. | 7.5 |
2018-02-07 | CVE-2017-12471 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ccn-Lite The cnb_parse_lev function in CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact by leveraging failure to check for out-of-bounds conditions, which triggers an invalid read in the hexdump function. | 7.5 |
2018-02-07 | CVE-2017-12470 | Integer Overflow or Wraparound vulnerability in Ccn-Lite Integer overflow in the ndn_parse_sequence function in CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact via vectors involving the typ and vallen variables. | 7.5 |
2018-02-07 | CVE-2017-12469 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ccn-Lite Buffer overflow in util/ccnl-common.c in CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact by leveraging incorrect memory allocation. | 7.5 |
2018-02-07 | CVE-2017-12468 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ccn-Lite Buffer overflow in ccn-lite-ccnb2xml.c in CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact via vectors involving the vallen and len variables. | 7.5 |
2018-02-07 | CVE-2017-12467 | Missing Release of Resource after Effective Lifetime vulnerability in Ccn-Lite Memory leak in CCN-lite before 2.00 allows context-dependent attackers to cause a denial of service (memory consumption) by leveraging failure to allocate memory for the comp or complen structure member. | 5.0 |
2018-02-07 | CVE-2017-12466 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ccn-Lite CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact via vectors related to ssl_halen when running ccn-lite-sim, which trigger an out-of-bounds access. | 7.5 |
2018-02-07 | CVE-2017-12465 | Integer Overflow or Wraparound vulnerability in Ccn-Lite Multiple integer overflows in CCN-lite before 2.00 allow context-dependent attackers to have unspecified impact via vectors involving the (1) vallen variable in the iottlv_parse_sequence function or (2) typ, vallen and i variables in the localrpc_parse function. | 7.5 |
2018-02-07 | CVE-2017-12464 | NULL Pointer Dereference vulnerability in Ccn-Lite ccn-lite-valid.c in CCN-lite before 2.00 allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via vectors involving the keyfile variable. | 5.0 |