Описание
Domain Name Relay Daemon (DNRD) before 2.19.1 allows remote attackers to cause a denial of service (infinite recursion) via a DNS packet that uses message compression in the QNAME and two pointers that point to each other (circular buffer).
Ссылки
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:dnrd:dnrd:2.0:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.1:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.2:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.3:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.4:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.5:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.6:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.7:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.8:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.9:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.10:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.11:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.12:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.12.1:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.13:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.14:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.14.1:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.15:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.16:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.16.1:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.17.1:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.17.2:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.18:*:*:*:*:*:*:*
cpe:2.3:a:dnrd:dnrd:2.19:*:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.00763
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Domain Name Relay Daemon (DNRD) before 2.19.1 allows remote attackers to cause a denial of service (infinite recursion) via a DNS packet that uses message compression in the QNAME and two pointers that point to each other (circular buffer).
EPSS
Процентиль: 73%
0.00763
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other