CVE-2008-3910

Name of the Vulnerable Software and Affected Versions dns2tcp versions prior to 0.4.1

Description The issue arises from improper handling of negative values in a certain length field within the input argument to the (1) dns simple decode or (2) dns decode function. This allows remote attackers to overwrite a buffer, potentially leading to unspecified consequences.

Recommendations For dns2tcp versions prior to 0.4.1, update to version 0.4.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the dns simple decode and dns decode functions until a patch is applied.