RSS   Vulnerabilities for 'Net dns'   RSS

2007-06-26
 
CVE-2007-3409

CWE-Other
 

 
Net::DNS before 0.60, a Perl module, allows remote attackers to cause a denial of service (stack consumption) via a malformed compressed DNS packet with self-referencing pointers, which triggers an infinite loop.

 
2007-06-25
 
CVE-2007-3377

CWE-Other
 

 
Header.pm in Net::DNS before 0.60, a Perl module, (1) generates predictable sequence IDs with a fixed increment and (2) can use the same starting ID for all child processes of a forking server, which allows remote attackers to spoof DNS responses, as originally reported for qpsmtp and spamassassin.

 

 >>> Vendor: Nlnet labs 2 Products
Net dns
Unbound


Copyright 2024, cxsecurity.com

 

Back to Top