CVE-2008-2469

Name of the Vulnerable Software and Affected Versions libspf2 versions prior to 1.2.8

Description The issue is related to a heap-based buffer overflow in the SPF dns resolv lookup function in Spf dns resolv.c. This allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field. The vulnerability can be exploited remotely and may lead to disruption of confidentiality, integrity, and availability of protected information.

Recommendations For versions prior to 1.2.8, update to version 1.2.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the SPF dns resolv lookup function until a patch is available. Avoid using long DNS TXT records with modified length fields in the affected function until the issue is resolved.