Show filters
52 Total Results
Displaying 41-50 of 52
Sort by:
Attacker Value
Unknown

CVE-2017-1000232

Disclosure Date: November 17, 2017 (last updated November 26, 2024)
A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecified impact and attack vectors.
0
0
Attacker Value
Unknown

CVE-2016-6173

Disclosure Date: February 09, 2017 (last updated November 26, 2024)
NSD before 4.1.11 allows remote DNS master servers to cause a denial of service (/tmp disk consumption and slave server crash) via a zone transfer with unlimited data.
0
0
Attacker Value
Unknown

CVE-2014-8602

Disclosure Date: December 11, 2014 (last updated October 05, 2023)
iterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegation chaining, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a large or infinite number of referrals.
0
0
Attacker Value
Unknown

CVE-2014-3209

Disclosure Date: November 16, 2014 (last updated October 05, 2023)
The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by reading the file.
0
0
Attacker Value
Unknown

CVE-2012-2978

Disclosure Date: July 27, 2012 (last updated October 04, 2023)
query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet.
0
0
Attacker Value
Unknown

CVE-2011-3581

Disclosure Date: November 04, 2011 (last updated October 04, 2023)
Heap-based buffer overflow in the ldns_rr_new_frm_str_internal function in ldns before 1.6.11 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Resource Record (RR) with an unknown type containing input that is longer than a specified length.
0
0
Attacker Value
Unknown

CVE-2009-4008

Disclosure Date: June 02, 2011 (last updated October 04, 2023)
Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.
0
0
Attacker Value
Unknown

CVE-2011-1922

Disclosure Date: May 31, 2011 (last updated October 04, 2023)
daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DNS request that triggers improper error handling.
0
0
Attacker Value
Unknown

CVE-2010-0969

Disclosure Date: March 16, 2010 (last updated October 04, 2023)
Unbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2009-3602

Disclosure Date: October 13, 2009 (last updated October 04, 2023)
Unbound before 1.3.4 does not properly verify signatures for NSEC3 records, which allows remote attackers to cause secure delegations to be downgraded via DNS spoofing or other DNS-related attacks in conjunction with crafted delegation responses.
0
0
View More Topics  < Previous  Next >