7.5

CVE-2007-3409

Net::DNS before 0.60, a Perl module, allows remote attackers to cause a denial of service (stack consumption) via a malformed compressed DNS packet with self-referencing pointers, which triggers an infinite loop.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
DebianDebian Linux Version3.1
DebianDebian Linux Version4.0
CanonicalUbuntu Linux Version6.06
CanonicalUbuntu Linux Version6.10
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.49% 0.876
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE-674 Uncontrolled Recursion

The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.

http://secunia.com/advisories/26231
Broken Link
http://www.trustix.org/errata/2007/0023/
Broken Link
ftp://patches.sgi.com/support/free/security/advisories/20070701-01-P.asc
Broken Link
http://secunia.com/advisories/26211
Broken Link
http://secunia.com/advisories/26543
Broken Link
http://www.novell.com/linux/security/advisories/2007_17_sr.html
Broken Link
http://secunia.com/advisories/25829
Broken Link
http://secunia.com/advisories/26012
Broken Link
http://secunia.com/advisories/26014
Broken Link
http://secunia.com/advisories/26055
Broken Link
http://secunia.com/advisories/26075
Broken Link
http://secunia.com/advisories/26417
Broken Link
http://secunia.com/advisories/29354
Broken Link
http://www.debian.org/security/2008/dsa-1515
Third Party Advisory
Mailing List
http://www.gentoo.org/security/en/glsa/glsa-200708-06.xml
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:146
Third Party Advisory
http://www.net-dns.org/docs/Changes.html
Release Notes
http://www.redhat.com/support/errata/RHSA-2007-0674.html
Broken Link
http://www.securityfocus.com/archive/1/473871/100/0/threaded
Third Party Advisory
Broken Link
VDB Entry
http://www.securityfocus.com/bid/24669
Third Party Advisory
Broken Link
VDB Entry
http://www.ubuntu.com/usn/usn-483-1
Third Party Advisory
http://osvdb.org/37054
Broken Link
http://rt.cpan.org/Public/Bug/Display.html?id=27285
Broken Link
http://www.securitytracker.com/id?1018376
Third Party Advisory
Broken Link
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10595
Broken Link