7.5

CVE-2005-0877

Dnsmasq before 2.21 allows remote attackers to poison the DNS cache via answers to queries that were not made by Dnsmasq.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ThekelleysDnsmasq Version < 2.21
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.87% 0.767
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:P/A:N
CWE-346 Origin Validation Error

The product does not properly verify that the source of data or communication is valid.

http://secunia.com/advisories/14691
Patch
Vendor Advisory
Broken Link
http://www.securityfocus.com/bid/12897
Patch
Third Party Advisory
Broken Link
VDB Entry
http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
Release Notes
https://exchange.xforce.ibmcloud.com/vulnerabilities/19826
Third Party Advisory
VDB Entry