Flemming N. Larsen

1 exploit Active since Mar 2019
CVE-2019-10648 WRITEUP CRITICAL WRITEUP
Robocode < 1.9.3.5 - Unauthenticated External Service Interaction via URL.openStream
Robocode through 1.9.3.5 allows remote attackers to cause external service interaction (DNS), as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL.
CVSS 9.8