43 matches found
EUVD-2006-0358
Malware in sbrugna...
EUVD-2006-2076
Malware in sbrugna...
openSUSE Security Update : pdns (openSUSE-2018-532)
This update for pdns fixes the following issues : Security issues fixed : - CVE-2018-1046: Fix an issue with replaying a specially crafted PCAP file that can trigger a stack-based buffer overflow, leading to a crash and potentially arbitrary code execution bsc1092540. %NASLMINLEVEL 70300 C Tenabl...
MyDNS 1.1.0 - Remote Heap Overflow PoC
No description provided by source. / mydns-rr-smash.c Copyright c 2007 by [email protected] mydns remote exploit PoC x86-lnx by mu-b - Apr 2007 - Tested on: mydns-1.1.0 .tar.gz This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public...
Gentoo Security Advisory GLSA 200601-16 (MyDNS)
The remote host is missing updates announced in advisory GLSA 200601-16. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200601-16 (MyDNS)
The remote host is missing updates announced in advisory GLSA 200601-16. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Debian Security Advisory DSA 963-1 (mydns)
The remote host is missing an update to mydns announced via advisory DSA 963-1. NISCC reported that MyDNS, a DNS server using an SQL database for data storage, can be tricked into an infinite loop by a remote attacker and hence cause a denial of service condition. The old stable distribution wood...
Debian: Security Advisory (DSA-1434-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-963-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1434-1 (mydns)
The remote host is missing an update to mydns announced via advisory DSA 1434-1. OpenVAS Vulnerability Test $Id: deb14341.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1434-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian DSA-1434-1 : mydns - buffer overflow
It was discovered that in MyDNS, a domain name server with database backend, the daemon could be crashed through malicious remote update requests, which may lead to denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
[SECURITY] [DSA 1434-1] New mydns packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1434-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst December 16, 2007 http://www.debian.org/security/faq -...
DSA-1434-1 mydns - denial of service
Bulletin has no description...
DTSA-36-1 mydns - multiple buffer overflows
Bulletin has no description...
CVE-2007-2362
Multiple buffer overflows in MyDNS 1.1.0 allow remote attackers to 1 cause a denial of service daemon crash and possibly execute arbitrary code via a certain update, which triggers a heap-based buffer overflow in update.c; and 2 cause a denial of service daemon crash via unspecified vectors that...
Heap overflow
Multiple buffer overflows in MyDNS 1.1.0 allow remote attackers to 1 cause a denial of service daemon crash and possibly execute arbitrary code via a certain update, which triggers a heap-based buffer overflow in update.c; and 2 cause a denial of service daemon crash via unspecified vectors that...
CVE-2007-2362
Multiple buffer overflows in MyDNS 1.1.0 allow remote attackers to 1 cause a denial of service daemon crash and possibly execute arbitrary code via a certain update, which triggers a heap-based buffer overflow in update.c; and 2 cause a denial of service daemon crash via unspecified vectors that...
CVE-2007-2362
Multiple buffer overflows in MyDNS 1.1.0 allow remote attackers to 1 cause a denial of service daemon crash and possibly execute arbitrary code via a certain update, which triggers a heap-based buffer overflow in update.c; and 2 cause a denial of service daemon crash via unspecified vectors that...
CVE-2007-2362
CVE-2007-2362 affects MyDNS 1.1.0. A remote update can trigger a heap-based buffer overflow in update.c, leading to a daemon crash and possible code execution; another vector triggers an off-by-one stack-based overflow in update.c causing DoS. Debian DSAs confirm fixes in later packages (e.g., my...
MyDNS远程动态DNS升级拒绝服务漏洞
MyDNS是运行在UNIX系统上的免费DNS服务程序。 MyDNS的src/mydns/update.c文件中updategobblerr函数存在堆溢出漏洞,远程攻击者可能利用此漏洞导致DNS拒绝服务。 如果远程攻击者向有漏洞的服务器提交了恶意查询请求的话,就可能触发这个溢出,导致拒绝服务。成功攻击要求用户拥有升级权限,且在mydns.conf文件中allow-update设置成为yes。 Don Moore MyDNS 1.1.0 临时解决方法: 如果您不能立刻安装补丁或者升级,NSFOCUS建议您采取以下措施以降低威胁: 将allow-update设置为no。 厂商补丁: Don...