7.5
CVE-2005-0877
- EPSS 1.87%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:11:58
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Dnsmasq before 2.21 allows remote attackers to poison the DNS cache via answers to queries that were not made by Dnsmasq.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Thekelleys ≫ Dnsmasq Version < 2.21
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.87% | 0.767 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
CWE-346 Origin Validation Error
The product does not properly verify that the source of data or communication is valid.
http://secunia.com/advisories/14691
http://www.securityfocus.com/bid/12897
http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
https://exchange.xforce.ibmcloud.com/vulnerabilities/19826