---

CVE-2020-6073 - log back

CVE-2020-6073 edited at 17 Apr 2020 21:07:13
Remote	- Local + Remote

CVE-2020-6073 edited at 17 Apr 2020 21:07:07
Severity	- Unknown + Medium
Remote	- Unknown + Local
Type	- Unknown + Information disclosure
Description	+ An exploitable denial-of-service vulnerability exists in the TXT record-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing the RDATA section in a TXT record in mDNS messages, multiple integer overflows can be triggered, leading to a denial of service. An attacker can send an mDNS message to trigger this vulnerability.
References	+ https://talosintelligence.com/vulnerability_reports/TALOS-2020-0996 + https://github.com/videolabs/libmicrodns/commit/f0e8a723ef2d0a7ef9e200a8fd7c561d4695c5cf
Notes

CVE-2020-6073 created at 17 Apr 2020 20:55:55