CVE-2018-16601

An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. A crafted IP header triggers a full memory space copy in prvProcessIPPacket, leading to denial of service and possibly remote code execution.
Configurations

Configuration 1

cpe:2.3:a:amazon:amazon_web_services_freertos:*:*:*:*:*:*:*:*
cpe:2.3:a:amazon:freertos:*:*:*:*:*:*:*:*

Information

Published : 2018-12-06 11:29

Updated : 2019-01-03 11:59


NVD link : CVE-2018-16601

Mitre link : CVE-2018-16601

Products Affected
No products.
CWE
CWE-191

Integer Underflow (Wrap or Wraparound)