Heap-based buffer overflow in the ares_create_query function in c-ares 1.x before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly execute arbitrary code via a hostname with an escaped trailing dot.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Chrome
Published: 2016-10-03T15:00:00
Updated: 2018-01-04T19:57:01
Reserved: 2016-05-31T00:00:00
Link: CVE-2016-5180
JSON object: View
NVD Information
Status : Modified
Published: 2016-10-03T15:59:03.270
Modified: 2023-11-07T02:33:17.543
Link: CVE-2016-5180
JSON object: View
Redhat Information
No data.
CWE