PT-2008-5492 · None · Pdnsd
Published
2008-09-24
·
Updated
2017-08-08
·
CVE-2008-4194
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
pdnsd versions prior to 1.2.7-par
Description
The issue is related to a dangling pointer bug in the p exec query function, allowing remote attackers to cause a denial of service by crashing the daemon with a long DNS reply containing many entries in the answer section.
Recommendations
For versions prior to 1.2.7-par, update to version 1.2.7-par or later to resolve the issue.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Pdnsd