5 matches found
Dnsmasq DCHP租期多个远程拒绝服务漏洞
BUGTRAQ ID: 31017 CVE ID:CVE-2008-3350 CNCVE ID:CNCVE-20083350 Dnsmasq是一款轻量级的DNS服务程序。 Dnsmasq处理租期存在多个安全问题,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 -当未知客户端尝试刷新DHCP租期时存在问题可导致应用程序崩溃。 -当一个没有租期的主机处理DHCPINFORM时可导致应用程序崩溃。 Gentoo net-dns/dnsmasq 2.43 Dnsmasq Dnsmasq 2.43 升级到最新版本:...
dnsmasq: Denial of Service and DNS spoofing
Background Dnsmasq is a lightweight and easily-configurable DNS forwarder and DHCP server. Description Dan Kaminsky of IOActive reported that dnsmasq does not randomize UDP source ports when forwarding DNS queries to a recursing DNS server CVE-2008-1447. Carlos Carvalho reported that dnsmasq in t...
CVE-2008-3350
dnsmasq 2.43 allows remote attackers to cause a denial of service daemon crash by 1 sending a DHCPINFORM while lacking a DHCP lease, or 2 attempting to renew a nonexistent DHCP lease for an invalid subnet as an "unknown client," a different vulnerability than CVE-2008-3214...
CVE-2008-3350
dnsmasq 2.43 allows remote attackers to cause a denial of service daemon crash by 1 sending a DHCPINFORM while lacking a DHCP lease, or 2 attempting to renew a nonexistent DHCP lease for an invalid subnet as an "unknown client," a different vulnerability than CVE-2008-3214...
CVE-2008-3350
dnsmasq 2.43 allows remote attackers to cause a denial of service daemon crash by 1 sending a DHCPINFORM while lacking a DHCP lease, or 2 attempting to renew a nonexistent DHCP lease for an invalid subnet as an "unknown client," a different vulnerability than CVE-2008-3214...