Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.29 views

Fedora 27 : yadifa (2017-4f2fbc84d9)

20170912: YADIFA 2.2.6 --- Fixes an issue where a maliciously crafted message may block the server. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much a...

7.8CVSS7.2AI score0.02528EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2017/10/20 12:0 a.m.30 views

Debian DSA-4001-1 : yadifa - security update

It was discovered that YADIFA, an authoritative DNS server, did not sufficiently check its input. This allowed a remote attacker to cause a denial-of-service by forcing the daemon to enter an infinite loop. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package chec...

7.8CVSS7.3AI score0.02528EPSS
Exploits1References4
CVE
CVE
added 2017/09/20 4:0 p.m.77 views

CVE-2017-14339

YADIFA DNS server (versions before 2.2.6) is affected by CVE-2017-14339 due to a DNS packet parser that does not detect infinite pointer loops, enabling an attacker to cause an infinite loop with high CPU usage and a non-responsive server. The issue is resolved in 2.2.6; affected systems should u...

7.8CVSS7.2AI score0.02528EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2017/09/20 4:0 p.m.29 views

CVE-2017-14339

The DNS packet parser in YADIFA before 2.2.6 does not check for the presence of infinite pointer loops, and thus it is possible to force it to enter an infinite loop. This can cause high CPU usage and makes the server unresponsive...

7.8CVSS2.3AI score0.02528EPSS
Exploits1
Rows per page
Query Builder