cve/2020/CVE-2020-11901.md

CVE-2020-11901

Description

The Treck TCP/IP stack before 6.0.1.66 allows Remote Code execution via a single invalid DNS response.

POC

Reference

• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC
• https://www.jsof-tech.com/ripple20/
• https://www.jsof-tech.com/ripple20/
• https://www.kb.cert.org/vuls/id/257161
• https://www.kb.cert.org/vuls/id/257161
• https://www.kb.cert.org/vuls/id/257161/
• https://www.kb.cert.org/vuls/id/257161/

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/CERTCC/PoC-Exploits/tree/master/vu-257161/scripts
• https://github.com/advanced-threat-research/Ripple-20-Detection-Logic