메뉴 건너뛰기

GREATUSER

cve

CVE-2017-2922

관리자 2017.11.09 04:00 조회 수 : 137

An exploitable memory corruption vulnerability exists in the Websocket protocol implementation of Cesanta Mongoose 6.8. A specially crafted websocket packet can cause a buffer to be allocated while leaving stale pointers which leads to a use-after-free vulnerability which can be exploited to achieve remote code execution. An attacker needs to send a specially crafted websocket packet over the network to trigger this vulnerability.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2922
번호 제목 글쓴이 날짜 조회 수
332 CVE-2017-16648 관리자 2017.11.09 162
331 CVE-2014-4919 관리자 2018.01.25 162
330 CVE-2018-5968 관리자 2018.01.25 162
329 CVE-2016-3215 관리자 2016.06.17 163
328 CVE-2013-7450 관리자 2017.04.04 163
327 CVE-2017-16524 관리자 2017.11.09 163
326 CVE-2017-14016 관리자 2017.11.09 163
325 CVE-2017-17858 관리자 2018.01.25 163
324 CVE-2017-0148 관리자 2017.03.18 164
323 CVE-2017-9506 관리자 2017.08.27 164
322 CVE-2017-12136 관리자 2017.08.27 164
321 CVE-2017-13694 관리자 2017.08.27 164
320 CVE-2017-16638 관리자 2017.11.09 164
319 CVE-2017-2898 관리자 2017.11.09 164
318 CVE-2018-5783 관리자 2018.01.25 164
위로