Back to search
CVE-2009-0858
Published: Mar 9, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
35820
third-party-advisory
x_refsource_SECUNIA
20090228 Re: djbdns misformats some long response packets; patch and example attack
mailing-list
x_refsource_BUGTRAQ
djbdns-response-packet-spoofing(49003)
vdb-entry
x_refsource_XF
20090305 Re: djbdns misformats some long response packets; patch and example attack
mailing-list
x_refsource_BUGTRAQ
DSA-1831
vendor-advisory
x_refsource_DEBIAN
[dns] 20090304 djbdns<=1.05 lets AXFRed subdomains overwrite domains
mailing-list
x_refsource_MLIST
33937
vdb-entry
x_refsource_BID
20090226 djbdns misformats some long response packets; patch and example attack
mailing-list
x_refsource_BUGTRAQ
[dns] 20090225 djbdns misformats some long response packets; patch and example
mailing-list
x_refsource_MLIST
http://it.slashdot.org/article.pl?sid=09/03/05/2014249
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now