CVE-2011-5055

Name of the Vulnerable Software and Affected Versions MaraDNS versions 1.3.07.12 and 1.4.08

Description The issue allows remote attackers to cause a denial of service by sending many crafted queries with the Recursion Desired bit set, resulting in CPU consumption. This occurs because MaraDNS computes hash values for DNS data without properly restricting the ability to trigger hash collisions predictably.

Recommendations For MaraDNS version 1.3.07.12, update to a version that properly restricts hash collisions. For MaraDNS version 1.4.08, update to a version that properly restricts hash collisions. As a temporary workaround, consider restricting the ability to send crafted queries with the Recursion Desired bit set to minimize the risk of exploitation.