CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

Debian CVE•added 2007/12/20 11:0 p.m.•29 views

CVE-2007-6341

Net/DNS/RR/A.pm in Net::DNS 0.60 build 654, as used in packages such as SpamAssassin and OTRS, allows remote attackers to cause a denial of service program "croak" via a crafted DNS response...

5CVSS6AI score0.18959EPSS

Exploits2

CVE•added 2007/12/20 11:0 p.m.•53 views

CVE-2007-6341

CVE-2007-6341 affects Net::DNS (Net::DNS perl module) in version 0.60 build 654, used by SpamAssassin and OTRS. A crafted DNS response can cause a remote DoS (process crash croak). Public references show Debian/Ubuntu patches and advisories updating libnet-dns-perl to fixed releases (e.g., DSA-15...

5CVSS7.1AI score0.18959EPSS

Exploits2References12Affected Software1

seebug.org•added 2007/12/18 12:0 a.m.•37 views

Perl Net::DNS DNS应答远程拒绝服务漏洞

BUGTRAQ ID: 26902 CVE ID：CVE-2007-6341 Perl Net::DNS是一款使用Perl实现的DNS解析应用程序。 Perl Net::DNS不正确处理畸形应答请求，远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。问题存在于Net/DNS/RR/A.pm： if $self-"rdlength" 0 $self-"address" = inetntoasubstr$$data, $offset, 4; 由于在使用substr时不正确验证$$data有4字节可读，可导致数据发送给inetntoa不足够而导致触发如下代码： ipaddress =...

5CVSS7.5AI score0.18959EPSS

Exploits2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by