Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
socat 1.8.0.0 - 1.8.1.1 Heap Buffer Overflow via SOCKS5 Reply Parser
Vulnerability Description
socat versions 1.8.0.0 through 1.8.1.1 contain a heap-based buffer overflow vulnerability that allows a malicious SOCKS5 proxy server to overwrite adjacent heap memory by exploiting a sign-extension flaw in the DOMAINNAME reply parser. During connection setup, the domain name length byte is read through a signed char field causing a negative bytes_to_read value that is implicitly converted to size_t, resulting in an unbounded heap write into the 262-byte reply buffer with attacker-controlled size and content.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
socat 缓冲区错误漏洞
Vulnerability Description
socat是socat个人开发者开源的一个中继器,用于在两个独立的数据之间进行双向数据传输渠道。 socat 1.8.1.1及之前版本和1.8.0.0版本存在缓冲区错误漏洞,该漏洞源于DOMAINNAME回复解析器中符号扩展缺陷导致的堆缓冲区溢出,允许恶意SOCKS5代理服务器利用有符号字符字段读取域名长度字节导致负的bytes_to_read值转换为size_t,造成对262字节回复缓冲区的无界堆写入。
CVSS Information
N/A
Vulnerability Type
N/A