parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions prior to 1.4.03, does not properly handle hostnames that do not end in a "." (dot) character, which allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted csv2 zone file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
maradns maradns 1.3.05 |
||
maradns maradns 1.3.06 |
||
maradns maradns 1.3.07.01 |
||
maradns maradns 1.3.07.02 |
||
maradns maradns 1.3.07.09 |
||
maradns maradns 1.4.01 |
||
maradns maradns 1.4.02 |
||
maradns maradns 1.3.07.06 |
||
maradns maradns 1.3.09 |
||
maradns maradns 1.3.10 |
||
maradns maradns 1.3.11 |
||
maradns maradns 1.3.12 |
||
maradns maradns 1.3.03 |
||
maradns maradns 1.3.07.04 |
||
maradns maradns 1.3.08 |
||
maradns maradns 1.3.14 |
||
maradns maradns 1.3.07.08 |
||
maradns maradns 1.3.04 |
||
maradns maradns 1.3.07.03 |
||
maradns maradns 1.3.07.05 |
||
maradns maradns 1.3.13 |
||
maradns maradns 1.3.07.07 |