Robocode through 1.9.3.5 allows remote attackers to cause external service interaction (DNS), as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-03-30T12:53:57

Updated: 2024-08-04T22:31:59.962Z

Reserved: 2019-03-30T00:00:00

Link: CVE-2019-10648

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2019-03-30T13:29:00.657

Modified: 2021-07-21T11:39:23.747

Link: CVE-2019-10648

cve-icon Redhat

No data.