CVE-2020-6078
published 2020-03-24CVE-2020-6078: An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing mDNS messages in…
PriorityP337high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
3.01%
85.7th percentile
An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing mDNS messages in mdns_recv, the return value of the mdns_read_header function is not checked, leading to an uninitialized variable usage that eventually results in a null pointer dereference, leading to service crash. An attacker can send a series of mDNS messages to trigger this vulnerability.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | libmicrodns | < libmicrodns 0.2.0-1 (forky) | libmicrodns 0.2.0-1 (forky) |
| debian | vlc | < libmicrodns 0.2.0-1 (forky) | libmicrodns 0.2.0-1 (forky) |
| videolabs | libmicrodns | — | — |
| videolabs | libmicrodns | >= 0 < 0.2.0-1 | 0.2.0-1 |
| videolabs | libmicrodns | >= 0 < 0.2.0-1 | 0.2.0-1 |
| videolabs | libmicrodns | >= 0 < 0.0.8-1ubuntu0.1~esm1 | 0.0.8-1ubuntu0.1~esm1 |
| videolan | vlc_media_player | >= 0 < 3.0.8-4 | 3.0.8-4 |
| videolan | vlc_media_player | >= 0 < 3.0.8-4 | 3.0.8-4 |
| videolan | vlc_media_player | >= 0 < 3.0.8-4 | 3.0.8-4 |
| videolan | vlc_media_player | >= 0 < 3.0.8-4 | 3.0.8-4 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_ubuntu7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
libmicrodns vulnerabilities
osv·2025-01-28·CVSS 7.5
CVE-2020-6071 [HIGH] libmicrodns vulnerabilities
libmicrodns vulnerabilities
It was discovered that libmicrodns could recursively follow the same
compression pointer, leading to an infinite loop. An attacker could
possibly use this issue to cause a denial of service. (CVE-2020-6071)
It was discovered that libmicrodns did not check the return value of the
rr_decode function, which could lead to a double free. An attacker could
possibly use this issue to execute arbitrary code. (CVE-2020-6072)
It was discovered that libmicrodns incorrectly handled certain inputs,
which could lead to an integer overflow. An attacker could possibly use
this issue to cause a denial of service. (CVE-2020-6073)
It was discovered that libmicrodns incorrectly handled certain inputs,
which could lead to a out-of-bounds read. An attacker could possibly use
this
GHSA
GHSA-4jhw-hrr3-2hpg: An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0
ghsa_unreviewed·2022-05-24
CVE-2020-6078 [MEDIUM] CWE-252 GHSA-4jhw-hrr3-2hpg: An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0
An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing mDNS messages in mdns_recv, the return value of the mdns_read_header function is not checked, leading to an uninitialized variable usage that eventually results in a null pointer dereference, leading to service crash. An attacker can send a series of mDNS messages to trigger this vulnerability.
OSV
CVE-2020-6078: An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0
osv·2020-03-24·CVSS 7.5
CVE-2020-6078 [HIGH] CVE-2020-6078: An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0
An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing mDNS messages in mdns_recv, the return value of the mdns_read_header function is not checked, leading to an uninitialized variable usage that eventually results in a null pointer dereference, leading to service crash. An attacker can send a series of mDNS messages to trigger this vulnerability.
Ubuntu
libmicrodns vulnerabilities
vendor_ubuntu·2025-01-28·CVSS 7.5
CVE-2020-6072 [HIGH] libmicrodns vulnerabilities
Title: libmicrodns vulnerabilities
Summary: Several security issues were fixed in libmicrodns.
It was discovered that libmicrodns could recursively follow the same
compression pointer, leading to an infinite loop. An attacker could
possibly use this issue to cause a denial of service. (CVE-2020-6071)
It was discovered that libmicrodns did not check the return value of the
rr_decode function, which could lead to a double free. An attacker could
possibly use this issue to execute arbitrary code. (CVE-2020-6072)
It was discovered that libmicrodns incorrectly handled certain inputs,
which could lead to an integer overflow. An attacker could possibly use
this issue to cause a denial of service. (CVE-2020-6073)
It was discovered that libmicrodns incorrectly handled certain inputs,
which cou
Debian
CVE-2020-6078: libmicrodns - An exploitable denial-of-service vulnerability exists in the message-parsing fun...
vendor_debian·2020·CVSS 7.5
CVE-2020-6078 [HIGH] CVE-2020-6078: libmicrodns - An exploitable denial-of-service vulnerability exists in the message-parsing fun...
An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing mDNS messages in mdns_recv, the return value of the mdns_read_header function is not checked, leading to an uninitialized variable usage that eventually results in a null pointer dereference, leading to service crash. An attacker can send a series of mDNS messages to trigger this vulnerability.
Scope: local
forky: resolved (fixed in 0.2.0-1)
sid: resolved (fixed in 0.2.0-1)
trixie: resolved (fixed in 0.2.0-1)
No detection rules found.
No public exploits indexed.
Talos
Vulnerability Spotlight: Multiple vulnerabilities in Videolabs libmicrodns
blogs_talos·2020-03-23·CVSS 7.5
[HIGH] Vulnerability Spotlight: Multiple vulnerabilities in Videolabs libmicrodns
## Vulnerability Spotlight: Multiple vulnerabilities in Videolabs libmicrodns
Claudio Bozzato of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.
A specific library in the Videolabs family of software contains multiple vulnerabilities that could lead to denial of service and code execution. Videolabs is a company founded by VideoLAN members and is the current editor of the VLC mobile applications and one of the largest contributors to VLC. They also
develop libmicrodns, a library which is used by VLC media player for mDNS services discovery. The libmicrodns library contains multiple vulnerabilities that could allow attackers to carry out a variety of malicious actions, including causing a denial of service and gaining the ability to execute arbitrary code.
In accordan
Talos
Vulnerability Spotlight: Multiple vulnerabilities in Videolabs libmicrodns
blogs_talos·2020-03-23·CVSS 7.5
[HIGH] Vulnerability Spotlight: Multiple vulnerabilities in Videolabs libmicrodns
Claudio Bozzato of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.
A specific library in the Videolabs family of software contains multiple vulnerabilities that could lead to denial of service and code execution. Videolabs is a company founded by VideoLAN members and is the current editor of the VLC mobile applications and one of the largest contributors to VLC. They also
develop libmicrodns, a library which is used by VLC media player for mDNS services discovery. The libmicrodns library contains multiple vulnerabilities that could allow attackers to carry out a variety of malicious actions, including causing a denial of service and gaining the ability to execute arbitrary code.
In accordance with our coordinated disclosure policy, Cisco Talos worked with Videolabs to
CWE
Unchecked Return Value
mitre_cwe
CWE-252 Unchecked Return Value
CWE-252: Unchecked Return Value
The product does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.
Two common programmer assumptions are "this function call can never fail" and "it doesn't matter if this function call fails". If an attacker can force the function to fail or otherwise return a value that is not expected, then the subsequent program logic could lead to a vulnerability, because the product is not in a state that the programmer assumes. For example, if the program calls a function to drop privileges but does not check the return code to ensure that privileges were successfully dropped, then the program will continue to operate with the higher privileges.
Background: Many functions will return some val
CWE
Missing Initialization of a Variable
mitre_cwe
CWE-456 Missing Initialization of a Variable
CWE-456: Missing Initialization of a Variable
The product does not initialize critical variables, which causes the execution environment to use unexpected values.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Integrity, Other. Impact: Unexpected State, Quality Degradation, Varies by Context. The uninitialized data may be invalid, causing logic errors within the program. In some cases, this could result in a security problem.
Detection Methods:
Automated Static Analysis: Automated static analysis, commonly referred to as Static Application Security Testing (SAST), can find some instances of this weakness by analyzing source code (or binary/compiled code) without having to execute it. Typically, this is done by building a model of data flow and control flow, th
CWE
NULL Pointer Dereference
mitre_cwe
CWE-476 NULL Pointer Dereference
CWE-476: NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Availability. Impact: DoS: Crash, Exit, or Restart. NULL pointer dereferences usually result in the failure of the process unless exception handling (on some platforms) is available and implemented. Even when exception handling is being used, it can still be very difficult to return the software to a safe state of operation.
Scope: Integrity, Confidentiality. Impact: Execute Unauthorized Code or Commands, Read Memory, Modify Memory. In rare circumstances, when NULL is equivalent to the 0x0 memory address and privileged code can access it, then writing or reading memory is possible, which may lead to code ex
https://security.gentoo.org/glsa/202005-10https://talosintelligence.com/vulnerability_reports/TALOS-2020-1001https://www.debian.org/security/2020/dsa-4671https://security.gentoo.org/glsa/202005-10https://talosintelligence.com/vulnerability_reports/TALOS-2020-1001https://www.debian.org/security/2020/dsa-4671
2020-03-24
Published