7.8

CVE-2007-3115

Multiple memory leaks in server/MaraDNS.c in MaraDNS before 1.2.12.06, and 1.3.x before 1.3.05, allow remote attackers to cause a denial of service (memory consumption) via (1) reverse lookups or (2) requests for records in a class other than Internet (IN), a different set of affected versions than CVE-2007-3114 and CVE-2007-3116.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MaradnsMaradns Version1.2.12.01
MaradnsMaradns Version1.2.12.02
MaradnsMaradns Version1.2.12.03
MaradnsMaradns Version1.2.12.04
MaradnsMaradns Version1.2.12.05
MaradnsMaradns Version1.3.01
MaradnsMaradns Version1.3.02
MaradnsMaradns Version1.3.03
MaradnsMaradns Version1.3.04
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.41% 0.819
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/25406
Patch
Vendor Advisory
http://secunia.com/advisories/25767
Vendor Advisory
http://www.debian.org/security/2007/dsa-1319
http://www.maradns.org/changelog.html
http://www.securityfocus.com/bid/24337
Patch
http://osvdb.org/37017
http://superb-west.dl.sourceforge.net/sourceforge/maradns/maradns-1.2.12.06.tar.gz
http://www.securityfocus.com/archive/1/471725/100/0/threaded
http://www.securitytracker.com/id?1018201
http://www.vupen.com/english/advisories/2007/2263
Vendor Advisory