Stack-based buffer overflow in Eclipse Mosquitto

#VU21405 Stack-based buffer overflow in Eclipse Mosquitto

Published: 2019-09-29

Vulnerability identifier: #VU21405

Vulnerability risk: Low

CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2019-11779

CWE-ID: CWE-121

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Eclipse Mosquitto
Server applications / Other server solutions

Vendor: Eclipse

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error when processing an overly long SUBSCRIBE packet containing a topic that consists of approximately 65400 or more '/' characters. A malicious MQTT client can send a specially crafted SUBSCRIBE packet, trigger stack overflow and perform denial of service attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Eclipse Mosquitto: 1.5 - 1.6.5

External links
http://bugs.eclipse.org/bugs/show_bug.cgi?id=551160

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Debian update for mosquitto

OpenSUSE Linux update for mosquitto

Denial of service in Eclipse Mosquitto

Stack-based buffer overflow in mosquitto (Alpine package)