Wind.River.VxWorks.Zero.Urgent.Pointer.Integer.Underflow

description-logoDescription

This indicates an attack attempt against an Integer Underflow Vulnerability on Wind River VxWorks System.
The vulnerability is due to the application failing to perform adequate boundary checks on user supplied data. A remote attacker may be able to exploit this to execute arbitrary code within the system via a crafted request.

affected-products-logoAffected Products

VxWorks 6.9.3
VxWorks 6.8
VxWorks 6.7
VxWorks 6.6

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.windriver.com/security/announcements/tcp-ip-network-stack-ipnet-urgent11/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2023-12-06 26.690
2023-11-23 26.683
2020-06-15 15.864 Sig Added
2020-01-14 15.757 Sig Added
2019-12-03 15.737 Default_action:pass:drop
2019-10-17 14.706 Sig Added
2019-09-04 14.681 Sig Added
2019-08-01 14.663