MaraDNS 'compress_add_dlabel_points()' Heap Buffer Overflow Vulnerability

Bugtraq ID: 45966
Class: Boundary Condition Error
CVE: CVE-2011-0520
Remote: Yes
Local: No
Published: Jan 24 2011 12:00AM
Updated: Nov 21 2011 06:45PM
Credit: Witold Baryluk
Vulnerable: MaraDNS MaraDNS 1.4.5
MaraDNS MaraDNS 1.3.7 .04
MaraDNS MaraDNS 1.3.5
MaraDNS MaraDNS 1.3.4
MaraDNS MaraDNS 1.2.12 .08
MaraDNS MaraDNS 1.2.12 .06
MaraDNS MaraDNS 1.2.12 .05
MaraDNS MaraDNS 1.2.12 .04
MaraDNS MaraDNS 1.2.12 .03
MaraDNS MaraDNS 1.0.41
MaraDNS MaraDNS 1.0.27
MaraDNS MaraDNS 1.0.23
MaraDNS MaraDNS 0.9 .01
MaraDNS MaraDNS 0.9 .00
MaraDNS MaraDNS 0.8.99
MaraDNS MaraDNS 0.8 .05
MaraDNS MaraDNS 0.5.31
MaraDNS MaraDNS 0.5.30
MaraDNS MaraDNS 0.5.29
MaraDNS MaraDNS 0.5.28
MaraDNS MaraDNS 1.4.03
MaraDNS MaraDNS 1.3.07.10
Gentoo Linux
Debian Linux 5.0 sparc
Debian Linux 5.0 s/390
Debian Linux 5.0 powerpc
Debian Linux 5.0 mipsel
Debian Linux 5.0 mips
Debian Linux 5.0 m68k
Debian Linux 5.0 ia-64
Debian Linux 5.0 ia-32
Debian Linux 5.0 hppa
Debian Linux 5.0 armel
Debian Linux 5.0 arm
Debian Linux 5.0 amd64
Debian Linux 5.0 alpha
Debian Linux 5.0
Not Vulnerable: MaraDNS MaraDNS 1.4.6
MaraDNS MaraDNS 1.3.07.11


 

Privacy Statement
Copyright 2010, SecurityFocus