Wind.River.VxWorks.Large.DHCP.Packet.Handling.Heap.Overflow
Description
This indicates an attack attempt against a Heap Overflow Vulnerability on Wind River VxWorks System.
A remote attacker on the same network segment as the victim can exploit this vulnerability by setting up a rogue DHCP server and responding to DHCP requests with malicious DHCP reply messages. Successful exploitation could potentially result in the attacker being able to run arbitrary code with administrative privileges on the target system.
Affected Products
VxWorks 6.9.3
VxWorks 6.8
VxWorks 6.7
VxWorks 6.6
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2019-12257
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |