Описание
The DNS implementation in DeleGate 8.10.2 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an infinite loop.
Ссылки
- Patch
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 8.10.2 (включая)
Одно из
cpe:2.3:a:delegate:delegate:*:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:5.9.3:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:7.7.0:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:7.7.1:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:7.8.0:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:7.8.1:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:7.8.2:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:7.9.11:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.3.3:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.3.4:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.4.0:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.5.0:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.1:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.2:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.3:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.4:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.5:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.6:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.10:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.10.1:*:*:*:*:*:*:*
cpe:2.3:a:etl:delegate:5.9:*:*:*:*:*:*:*
cpe:2.3:a:etl:delegate:6.0:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00928
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
The DNS implementation in DeleGate 8.10.2 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an infinite loop.
EPSS
Процентиль: 76%
0.00928
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other