Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2008-0122

Опубликовано: 14 янв. 2008
Источник: redhat

Описание

Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption.

Отчет

This issue did not affect the versions of GNU libc as shipped with Red Hat Enterprise Linux 2.1, 3, 4, or 5. This issue affects the versions of libbind as shipped with Red Hat Enterprise Linux 2.1, 3, 4, and 5, however the vulnerable function is not used by any shipped applications. The Red Hat Security Response Team has therefore rated this issue as having low security impact, a future update may address this flaw. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2008-0122

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 4bindAffected
Red Hat Enterprise Linux 5bindFixedRHSA-2008:030020.05.2008

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-193
https://bugzilla.redhat.com/show_bug.cgi?id=429149libbind off-by-one buffer overflow

Связанные уязвимости

ubuntu логотип

CVE-2008-0122

ubuntu
больше 17 лет назад

Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption.

nvd логотип

CVE-2008-0122

nvd
больше 17 лет назад

Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption.

debian логотип

CVE-2008-0122

debian
больше 17 лет назад

Off-by-one error in the inet_network function in libbind in ISC BIND 9 ...

github логотип

GHSA-qfv4-7qhr-3fj9

github
около 3 лет назад

Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption.

oracle-oval логотип

ELSA-2008-0300

oracle-oval
около 17 лет назад

ELSA-2008-0300: bind security, bug fix, and enhancement update (MODERATE)