Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-2469HistoryOct 23, 2008 - 10:00 p.m.
CVE-2008-2469
2008-10-2322:00:01
Debian Security Bug Tracker
security-tracker.debian.org
10
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.911 High
EPSS
Percentile
98.9%
Heap-based buffer overflow in the SPF_dns_resolv_lookup function in Spf_dns_resolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libspf2 | < 1.2.9-1 | libspf2_1.2.9-1_all.deb |
| Debian | 11 | all | libspf2 | < 1.2.9-1 | libspf2_1.2.9-1_all.deb |
| Debian | 999 | all | libspf2 | < 1.2.9-1 | libspf2_1.2.9-1_all.deb |
| Debian | 13 | all | libspf2 | < 1.2.9-1 | libspf2_1.2.9-1_all.deb |
Related
nessus
nessus
GLSA-200810-03 : libspf2: DNS response buffer overflow
2008-10-31 00:00:00
Debian DSA-1659-1 : libspf2 - buffer overflow
2008-10-27 00:00:00
FreeBSD : libspf2 -- Buffer overflow (2ddbfd29-a455-11dd-a55e-00163e000016)
2008-10-28 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200810-03 (libspf2)
2008-11-01 00:00:00
FreeBSD Ports: libspf2
2008-11-01 00:00:00
Gentoo Security Advisory GLSA 200810-03 (libspf2)
2008-11-01 00:00:00
debian
debian
[Backports-security-announce] Security Update for libspf2
2008-10-22 09:56:27
[Backports-security-announce] Security Update for libspf2
2008-10-22 09:56:20
cert
cert
libspf2 DNS TXT record parsing buffer overflow
2008-10-30 00:00:00
osv
osv
libspf2 - potential remote code execution
2008-10-23 00:00:00
cvelist
cvelist
CVE-2008-2469
2008-10-23 21:00:00
nvd
nvd
CVE-2008-2469
2008-10-23 22:00:01
ubuntucve
ubuntucve
CVE-2008-2469
2008-10-23 00:00:00
checkpoint_advisories
checkpoint_advisories
DNS TXT Record Parsing Buffer Overflow (CVE-2008-2469)
2009-02-22 00:00:00
cve
cve
CVE-2008-2469
2008-10-23 22:00:01
prion
prion
Heap overflow
2008-10-23 22:00:00
seebug
seebug
libspf2 DNS TXT记录处理堆溢出漏洞
2008-10-27 00:00:00
gentoo
gentoo
libspf2: DNS response buffer overflow
2008-10-30 00:00:00
freebsd
freebsd
libspf2 -- Buffer overflow
2008-10-21 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.911 High
EPSS
Percentile
98.9%
Related for DEBIANCVE:CVE-2008-2469