3 matches found
Dns2tcp远程缓冲区溢出漏洞
BUGTRAQ ID: 31080 CVE ID:CVE-2008-3910 CNCVE ID:CNCVE-20083910 Dns2tcp是一款允许在DNS报文中封装TCP会话的工具。 Dns2tcp存在多个缓冲区溢出,远程攻击者可以利用漏洞以应用程序权限执行任意任意指令。 目前没有详细漏洞细节提供。 Herve Schauer Consultants HSC Dns2tcp 0.4 升级到最新版本: Herve Schauer Consultants HSC Dns2tcp 0.4 Herve Schauer Consultants HSC dns2tcp-0.4.1.tar.gz...
CVE-2008-3910
dns2tcp before 0.4.1 does not properly handle negative values in a certain length field in the input argument to the 1 dnssimpledecode or 2 dnsdecode function, which allows remote attackers to overwrite a buffer and have unspecified other impact...
CVE-2008-3910
CVE-2008-3910 affects dns2tcp before 0.4.1. The vulnerability arises in the handling of negative values in a certain length field passed to dns_simple_decode or dns_decode, allowing remote attackers to overwrite a buffer and cause unspecified other impact. The issue is described across multiple s...