Vulnerability CVE-2018-20578


Published: 2018-12-28

Description:
An issue was discovered in NuttX before 7.27. The function netlib_parsehttpurl() in apps/netutils/netlib/netlib_parsehttpurl.c mishandles URLs longer than hostlen bytes (in the webclient, this is set by default to 40), leading to an Infinite Loop. The attack vector is the Location header of an HTTP 3xx response.

Type:

CWE-835

(Loop with Unreachable Exit Condition ('Infinite Loop'))

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial
Affected software
Nuttx -> Nuttx 

 References:
https://bitbucket.org/nuttx/nuttx/downloads/nuttx-7_27-README.txt
https://bitbucket.org/nuttx/nuttx/issues/119/denial-of-service-infinite-loop-while

Copyright 2024, cxsecurity.com

 

Back to Top