Published: 26/06/2007 Updated: 03/02/2024

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Net::DNS prior to 0.60, a Perl module, allows remote malicious users to cause a denial of service (stack consumption) via a malformed compressed DNS packet with self-referencing pointers, which triggers an infinite loop.

Vulnerable Product	Search on Vulmon	Subscribe to Product
net-dns net\\ \\
debian debian linux 3.1
debian debian linux 4.0
canonical ubuntu linux 6.10
canonical ubuntu linux 6.06

Debian Bug report logs - #457445 libnet-dns-perl: CVE-2007-6341 possible remote denial of service vulnerability Package: libnet-dns-perl; Maintainer for libnet-dns-perl is Debian Perl Group <pkg-perl-maintainers@listsaliothdebianorg>; Source for libnet-dns-perl is src:libnet-dns-perl (PTS, buildd, popcon) Reported by: Nic ...

Peter Johannes Holzer discovered that the Net::DNS Perl module had predictable sequence numbers This could allow remote attackers to carry out DNS spoofing, leading to possible man-in-the-middle attacks (CVE-2007-3377) ...

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-3409

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect