25 matches found
EUVD-2006-0031
Malware in sbrugna...
EUVD-2008-4373
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2008-4392
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DN...
CVE-2012-1191
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names"...
djbdns超长消息处理拒绝服务漏洞
Bugtraq ID:65586 djbdns TinyDNS是一个由Qmail 的作者所设计的一个轻量级DNS服务器。 djbdns在读取TCP连接的超长消息时,会触发多个Read2调用,消耗大量CPU,造成拒绝服务攻击。 0 djbdns 厂商补丁: djbdns ----- 用户可参考厂商的GIT库以获得补丁修复此漏洞: https://github.com/pjps/ndjbdns/commit/a67293ce12832b55ec4271536282290ed17863f6 / dnscache reads incoming TCP connections one byte a...
Code injection
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names"...
CVE-2012-1191
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names"...
CVE-2012-1191
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names"...
CVE-2012-1191
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names"...
CVE-2012-1191
CVE-2012-1191 affects the dns resolver in djbdns’s dnscache (version 1.05). The vulnerability arises when processing an A record response, where the resolver overwrites cached NS record names and TTLs, enabling a ghost-domain names attack that can keep revoked domains resolvable. The issue is doc...
CVE-2012-1191
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names"...
CVE-2012-1191
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names"...
CVE-2009-0234
CVE-2009-0234 concerns the DNS Resolver Cache Service (DNSCache) in Windows DNS Server. The vulnerability arises from the DNS server’s handling of crafted DNS responses, where improper caching could let remote attackers predict transaction IDs and poison caches by sending numerous crafted queries...
djbdns dnscache SOA请求远程缓存中毒漏洞
BUGTRAQ ID: 33818 CVECAN ID: CVE-2008-4392 djbdns是一个由Qmail的作者所设计的轻量级DNS server。 djbdns的dnscache服务组件没有正确地处理SOA记录,如果远程攻击者持续的向服务器发送大量的SOA请求和伪造回复,就会增加DNS缓存投毒攻击的成功概率。 D. J. Bernstein djbdns 1.05 厂商补丁: D. J. Bernstein --------------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2008-4392
dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority SOA query...
Code injection
dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority SOA query...
DEBIAN-CVE-2008-4392
dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority SOA query...
UBUNTU-CVE-2008-4392
dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority SOA query...
CVE-2008-4392
dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority SOA query...
CVE-2008-4392
CVE-2008-4392 concerns the dns cache in the Berkeley dnscache (djbdns 1.05) where concurrent identical outbound DNS queries are not prevented. This can allow remote attackers to spoof DNS responses, demonstrated by a spoofed A record in an SOA response. Connected sources (Nessus/OpenVAS/Fedora ad...