Denial of Service (DoS) Affecting github.com/btcsuitereleases/go-socks/socks package, versions <0.0.0-20150513194711-cfe8b59e565c
Snyk CVSS
Attack Complexity
High
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-GOLANG-GITHUBCOMBTCSUITERELEASESGOSOCKSSOCKS-50056
- published 30 Oct 2017
- disclosed 7 Aug 2013
- credit David Hill
How to fix?
Upgrade github.com/btcsuitereleases/go-socks/socks
to version 0.0.0-20150513194711-cfe8b59e565c or higher.
Overview
github.com/btcsuitereleases/go-socks/socks is a SOCKS5 Proxy Package for Go.
Affected versions of this package are vulnerable to Denial of Service (DoS). An attacker can exploit this vulnerability to trigger an infinite loop, causing the system to stop responding.