Skip to content

Fearful Encounter: Confronting a Ghostly Presence

Original Post: I Might Be Afraid Of This Ghost

CVE-2015-7547 is a flaw found in the glibc library’s DNS implementation that is more virulent than the “Ghost” bug from the previous year. The new flaw exploits the getaddrinfo() function which modern software uses for IPv6 compatibility. Unlike Ghost, which had specific constraints that limited its exploitability, CVE-2015-7547 has fewer constraints and can potentially lead to a larger malicious payload being delivered. The exact extent of the exploitability of CVE-2015-7547 is still uncertain.

Go here to read the Original Post

Leave a Reply

Your email address will not be published. Required fields are marked *