An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. A crafted IP header triggers a full memory space copy in prvProcessIPPacket, leading to denial of service and possibly remote code execution.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-05T10:24:32.905Z

Reserved: 2018-09-06T00:00:00

Link: CVE-2018-16601

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-12-06T23:29:01.033

Modified: 2024-11-21T03:53:02.270

Link: CVE-2018-16601

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.