Intrusion Prevention

Wind.River.VxWorks.Large.DHCP.Packet.Handling.Heap.Overflow

Description

This indicates an attack attempt against a Heap Overflow Vulnerability on Wind River VxWorks System.
A remote attacker on the same network segment as the victim can exploit this vulnerability by setting up a rogue DHCP server and responding to DHCP requests with malicious DHCP reply messages. Successful exploitation could potentially result in the attacker being able to run arbitrary code with administrative privileges on the target system.

Affected Products

VxWorks 6.9.3
VxWorks 6.8
VxWorks 6.7
VxWorks 6.6

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2019-12257

CVE References

CVE-2019-12257