PT-2006-3053 · Delegate · Delegate

Published

2006-04-27

Updated

2017-07-20

CVE-2006-2072

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions DeleGate versions 8.x through 8.11.5 DeleGate versions 9.x through 9.0.5

Description The issue allows remote attackers to cause a denial of service via crafted DNS responses messages. This can lead to a buffer over-read or infinite recursion, potentially triggering a segmentation fault or invalid memory access.

Recommendations For DeleGate versions 8.x through 8.11.5, update to version 8.11.6 or later. For DeleGate versions 9.x through 9.0.5, update to version 9.0.6 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-2072

Affected Products

Delegate

PT-2006-3053 · Delegate · Delegate

CVE-2006-2072

Related Identifiers

Affected Products

References · 11