CVE-2008-3910

2008-09-04T13:41:00
ID CVE-2008-3910
Type cve
Reporter NVD
Modified 2017-08-07T21:32:15

Description

dns2tcp before 0.4.1 does not properly handle negative values in a certain length field in the input argument to the (1) dns_simple_decode or (2) dns_decode function, which allows remote attackers to overwrite a buffer and have unspecified other impact.