Description

A segmentation fault in TripleCross v0.1.0 occurs when sending a control command from the client to the server. This occurs because there is no limit to the length of the output of the executed command.

Related CPE's

a

triplecross_project

triplecross

0.1.0

Vulnerable

References

https://github.com/h3xduck/TripleCross/issues/40

ExploitIssue TrackingThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-770

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2022-08-03T21:15:08.303

2 years ago

Last modified

2022-08-10T15:48:34.157

2 years ago