CVE-2019-15702

Published: Aug 27, 2019Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

In the TCP implementation (gnrc_tcp) in RIOT through 2019.07, the parser for TCP options does not terminate on all inputs, allowing a denial-of-service, because sys/net/gnrc/transport_layer/tcp/gnrc_tcp_option.c has an infinite loop for an unknown zero-length option.

Affected (1)

Products: Riot Os: Riot

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Riot Os Riot	Up to 2019.07

Related CWEs

Loop with Unreachable Exit Condition ('Infinite Loop')

The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

References (2)

https://github.com/RIOT-OS/RIOT/issues/12086

Source: cve@mitre.org

ExploitThird Party Advisory

https://github.com/RIOT-OS/RIOT/issues/12086

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.