10 matches found
SUSE CVE-2025-59029
An attacker can trigger an assertion failure by requesting crafted DNS records, waiting for them to be inserted into the records cache, then send a query with qtype set to ANY...
CVE-2025-59029 Internal logic flaw in cache management can lead to a denial of service in PowerDNS Recursor
An attacker can trigger an assertion failure by requesting crafted DNS records, waiting for them to be inserted into the records cache, then send a query with qtype set to ANY...
EUVD-2013-2034
Malware in sbrugna...
CVE-2013-2052
Buffer overflow in the atodn function in libreswan 3.0 and 3.1, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service pluto IKE daemon crash and possibly execute arbitrary code via crafted DNS TXT records. NOTE: this might be t...
Remote Code Execution (RCE)
openswan is vulnerable to remote code execution RCE attacks. The vulnerability exists through a buffer overflow issue in the atodn function in Openswan before 2.6.39, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service pluto...
USN-2344-1: PHP vulnerabilities
It was discovered that the Fileinfo component in php5 contains an integer overflow. An attacker could use this flaw to cause a denial of service or possibly execute arbitrary code via a crafted CDF file. CVE-2014-3587 It was discovered that the phpparserr function contains multiple buffer...
CVE-2011-2500
The hostreliableaddrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystems by establishing crafted DNS A and PTR records...
CVE-2011-2500
The hostreliableaddrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystems by establishing crafted DNS A and PTR records...
CVE-2013-2054
Summary: CVE-2013-2054 (strongSwan/OpenSwan): remote buffer overflow in the atodn() function when Opportunistic Encryption is enabled and an RSA key is used, exploitable via crafted DNS TXT records to crash the pluto daemon or potentially execute code. Impact per sources: DoS and possible code ex...
nfs-utils: Improper authentication of an incoming request when an IP based authentication used
The hostreliableaddrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystems by establishing crafted DNS A and PTR records...