CVE-2010-2444

描述

parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions before 1.4.03, does not properly handle hostnames that do not end in a "." (dot) character, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted csv2 zone file.

受影響套件(1)

• Debian/maradnsfrom 0, < 1.4.03-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-2444