메뉴 건너뛰기

GREATUSER

cve

CVE-2017-2922

관리자 2017.11.09 04:00 조회 수 : 137

An exploitable memory corruption vulnerability exists in the Websocket protocol implementation of Cesanta Mongoose 6.8. A specially crafted websocket packet can cause a buffer to be allocated while leaving stale pointers which leads to a use-after-free vulnerability which can be exploited to achieve remote code execution. An attacker needs to send a specially crafted websocket packet over the network to trigger this vulnerability.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2922
번호 제목 글쓴이 날짜 조회 수
392 CVE-2017-0123 관리자 2017.03.18 194
391 CVE-2017-0119 관리자 2017.03.18 92
390 CVE-2017-0125 관리자 2017.03.18 151
389 CVE-2017-0113 관리자 2017.03.18 100
388 CVE-2017-0127 관리자 2017.03.18 179
387 CVE-2017-0131 관리자 2017.03.18 92
386 CVE-2017-0129 관리자 2017.03.18 112
385 CVE-2017-0117 관리자 2017.03.18 180
384 CVE-2017-0144 관리자 2017.03.18 165
383 CVE-2017-0146 관리자 2017.03.18 161
382 CVE-2017-0150 관리자 2017.03.18 87
381 CVE-2017-0148 관리자 2017.03.18 164
380 CVE-2017-0151 관리자 2017.03.18 213
379 CVE-2017-0145 관리자 2017.03.18 218
378 CVE-2017-0154 관리자 2017.03.18 153
위로