CVE-2011-5056
MaraDNS < 2.0.04 - Denial of Service via DNS Hash Collision
Title source: llmDescription
The authoritative server in MaraDNS through 2.0.04 computes hash values for DNS data without restricting the ability to trigger hash collisions predictably, which might allow local users to cause a denial of service (CPU consumption) via crafted records in zone files, a different vulnerability than CVE-2012-0024.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/72258
Patch, Third Party Advisory x_refsource_confirm
http://samiam.org/blog/20111229.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1026820
Scores
EPSS
0.0040
EPSS Percentile
32.3%
Details
CWE
CWE-400
Status
published
Products (1)
maradns/maradns
< 2.0.04
Published
Jan 08, 2012
Tracked Since
Feb 18, 2026