C-ares Project » C-ares : Security Vulnerabilities, CVEs, Published In 2016 (Overflow) CVSS score >= 6
Heap-based buffer overflow in the ares_create_query function in c-ares 1.x before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly execute arbitrary code via a hostname with an escaped trailing dot.
Max CVSS
9.8
EPSS Score
4.52%
Published
2016-10-03
Updated
2023-09-15
1 vulnerabilities found