Computer Security
[EN] securityvulns.ru no-pyccku


MaraDNS buffer overflow
Published:27.11.2011
Source:
SecurityVulns ID:12056
Type:remote
Threat Level:
6/10
Description:Buffer overflow on request parsing.
Affected:MARADNS : MaraDNS 1.4
CVE:CVE-2011-0520 (The compress_add_dlabel_points function in dns/Compress.c in MaraDNS 1.4.03, 1.4.05, and probably other versions allows remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a long DNS hostname with a large number of labels, which triggers a heap-based buffer overflow.)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod