메뉴 건너뛰기

GREATUSER

cve

CVE-2017-2922

관리자 2017.11.09 04:00 조회 수 : 23

An exploitable memory corruption vulnerability exists in the Websocket protocol implementation of Cesanta Mongoose 6.8. A specially crafted websocket packet can cause a buffer to be allocated while leaving stale pointers which leads to a use-after-free vulnerability which can be exploited to achieve remote code execution. An attacker needs to send a specially crafted websocket packet over the network to trigger this vulnerability.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-2922
번호 제목 글쓴이 날짜 조회 수
422 CVE-2017-16561 관리자 2017.11.09 53
421 CVE-2017-16642 관리자 2017.11.09 31
420 CVE-2008-7319 관리자 2017.11.09 32
419 CVE-2016-0872 관리자 2017.11.09 27
418 CVE-2017-16641 관리자 2017.11.09 44
» CVE-2017-2922 관리자 2017.11.09 23
416 CVE-2017-2916 관리자 2017.11.09 35
415 CVE-2017-2921 관리자 2017.11.09 31
414 CVE-2017-2917 관리자 2017.11.09 34
413 CVE-2017-2915 관리자 2017.11.09 31
412 CVE-2017-2914 관리자 2017.11.09 40
411 CVE-2017-2913 관리자 2017.11.09 32
410 CVE-2017-12083 관리자 2017.11.09 30
409 CVE-2017-2864 관리자 2017.11.09 32
408 CVE-2017-2894 관리자 2017.11.09 55
위로