CVE-2011-0520
MaraDNS - Heap-Based Buffer Overflow via Long DNS Hostname with Many Labels
Title source: llmDescription
The compress_add_dlabel_points function in dns/Compress.c in MaraDNS 1.4.03, 1.4.05, and probably other versions allows remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a long DNS hostname with a large number of labels, which triggers a heap-based buffer overflow.
References (10)
Core 10
Core References
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0699
Issue Tracking x_refsource_confirm
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610834
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/01/24/1
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/01/24/6
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/64885
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2011/dsa-2196
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/43107
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/43027
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/70630
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/45966
Scores
EPSS
0.0517
EPSS Percentile
91.5%
Details
CWE
CWE-119
Status
published
Products (2)
maradns/maradns
1.4.03
maradns/maradns
1.4.05
Published
Jan 28, 2011
Tracked Since
Feb 18, 2026