7 matches found
MaraDNS 1.2.12.06 / 1.3.05 Wildcard Resource Record Remote DoS
According to its self-reported version number, the MaraDNS server running on the remote host is affected by a memory leak issue when handling wildcard records. This issue could allow a remote attacker to cause a remote denial of service by querying for wildcard records. Note that issue only affec...
Debian Security Advisory DSA 1319-1 (maradns)
The remote host is missing an update to maradns announced via advisory DSA 1319-1. OpenVAS Vulnerability Test $Id: deb13191.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1319-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian: Security Advisory (DSA-1319-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1319-1 : maradns - memory leaks
Several remote vulnerabilities have been discovered in MaraDNS, a simple security-aware Domain Name Service server. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-3114 It was discovered that malformed DNS requests can trigger memory leaks, allowing...
Design/Logic Flaw
Multiple memory leaks in server/MaraDNS.c in MaraDNS before 1.2.12.06, and 1.3.x before 1.3.05, allow remote attackers to cause a denial of service memory consumption via 1 reverse lookups or 2 requests for records in a class other than Internet IN, a different set of affected versions than...
Memory corruption
Memory leak in server/MaraDNS.c in MaraDNS before 1.2.12.05, and 1.3.x before 1.3.03, allows remote attackers to cause a denial of service memory consumption via unspecified vectors, a different set of affected versions than CVE-2007-3115 and CVE-2007-3116...
CVE-2007-3116
CVE-2007-3116 is discussed in MaraDNS 1.2.12.06 / 1.3.05 as a memory-leak DoS related to handling wildcard DNS records. The condition notes a memory leak that can allow a remote attacker to exhaust memory via queries for wildcard records, with the issue gated by configuration (bind_star_handling ...