CVE-2017-12465

Published February 7th, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

Multiple integer overflows in CCN-lite before 2.00 allow context-dependent attackers to have unspecified impact via vectors involving the (1) vallen variable in the iottlv_parse_sequence function or (2) typ, vallen and i variables in the localrpc_parse function.

cn-uofbasel/ccn-lite

CCN-lite, a lightweight implementation of the CCNx protocol and its variations

GitHub