CVE-2019-10648

Published: Mar 30, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

Robocode through 1.9.3.5 allows remote attackers to cause external service interaction (DNS), as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/robo-code/robocode/commit/836c84635e982e74f2f2771b2c8640c3a34221bd#diff-0296a8f9d4a509789f4dc4f052d9c36f

x_refsource_MISC

https://sourceforge.net/p/robocode/bugs/406/

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-10648

Description

Affected Products

References