CVE-2013-0198

dnsmasq < 2.65 - Denial of Service via Spoofed TCP DNS Queries

Title source: llm
STIX 2.1

Description

Dnsmasq before 2.66test2, when used with certain libvirt configurations, replies to queries from prohibited interfaces, which allows remote attackers to cause a denial of service (traffic amplification) via spoofed TCP based DNS queries. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-3411.

References (5)

Core 5
Core References
Exploit, Issue Tracking, Patch, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=894486
Third Party Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2013:072
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2013/01/18/7
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2013/01/18/2

Scores

EPSS 0.0279
EPSS Percentile 84.8%

Details

CWE
CWE-20
Status published
Products (1)
thekelleys/dnsmasq < 2.65
Published Mar 05, 2013
Tracked Since Feb 18, 2026