Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-2444

Опубликовано: 25 июн. 2010
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions before 1.4.03, does not properly handle hostnames that do not end in a "." (dot) character, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted csv2 zone file.

Комментарий

Per: http://cwe.mitre.org/data/definitions/476.html

'NULL Pointer Dereference'

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:maradns:maradns:1.3.03:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.04:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.05:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.06:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.07.01:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.07.02:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.07.03:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.07.04:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.07.05:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.07.06:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.07.07:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.07.08:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.07.09:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.08:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.09:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.10:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.11:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.12:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.13:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.3.14:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.4.01:*:*:*:*:*:*:*
cpe:2.3:a:maradns:maradns:1.4.02:*:*:*:*:*:*:*

EPSS

Процентиль: 65%
0.005
Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

ubuntu логотип

CVE-2010-2444

ubuntu
больше 15 лет назад

parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions before 1.4.03, does not properly handle hostnames that do not end in a "." (dot) character, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted csv2 zone file.

debian логотип

CVE-2010-2444

debian
больше 15 лет назад

parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions before 1.4.03 ...

github логотип

GHSA-xr2r-4cvv-wp49

github
больше 3 лет назад

parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions before 1.4.03, does not properly handle hostnames that do not end in a "." (dot) character, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted csv2 zone file.

EPSS

Процентиль: 65%
0.005
Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other