2 matches found
CBL Mariner 2.0 Security Update: bind (CVE-2023-4408)
The version of bind installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4408 advisory. - The DNS message parsing code in named includes a section whose computational complexity is overly high. It does...
[Full-disclosure] eXtremail-v9
The attached POC exploits a trivial stack smash in the DNS parsing code of eXtremail versions = 2.1.1 current. The POC attached is rather trivial in that it simply answers queries with a suitable response to exhibit the overflow. However, the problem is further compounded by the fact that eXtrema...