Lucene search

[email protected]CVE-2005-0877

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0877

2005-05-0204:00:00

CWE-346

[email protected]

web.nvd.nist.gov

101

cve-2005-0877

dnsmasq

dns cache

remote attackers

security vulnerability

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

6.6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

67.9%

JSON

Dnsmasq before 2.21 allows remote attackers to poison the DNS cache via answers to queries that were not made by Dnsmasq.

CPENameOperatorVersion
thekelleys:dnsmasqthekelleys dnsmasqlt2.21

CPE	Name	Operator	Version
thekelleys:dnsmasq	thekelleys dnsmasq	lt	2.21

References

secunia.com/advisories/14691

www.securityfocus.com/bid/12897

www.thekelleys.org.uk/dnsmasq/CHANGELOG

exchange.xforce.ibmcloud.com/vulnerabilities/19826

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

6.6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

67.9%

JSON

Related for CVE-2005-0877

debiancve1 ubuntucve1 redhatcve1 openvas2 nessus2 slackware1