Description
NSD before 4.1.11 allows remote DNS master servers to cause a denial of service (/tmp disk consumption and slave server crash) via a zone transfer with unlimited data.
References (8)
Core 8
Core References
Release Notes, Vendor Advisory mailing-list
x_refsource_mlist
https://open.nlnetlabs.nl/pipermail/nsd-users/2016-August/002342.html
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2016/07/06/3
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/91678
Issue Tracking x_refsource_confirm
https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=790
Third Party Advisory mailing-list
x_refsource_mlist
https://lists.dns-oarc.net/pipermail/dns-operations/2016-July/015058.html
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2016/07/06/4
Release Notes, Vendor Advisory x_refsource_confirm
http://www.nlnetlabs.nl/svn/nsd/tags/NSD_4_1_11_REL/doc/RELNOTES
Third Party Advisory x_refsource_misc
https://github.com/sischkg/xfer-limit/blob/master/README.md
Scores
CVSS v3
7.5
EPSS
0.0340
EPSS Percentile
87.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-399
Status
published
Products (1)
nlnetlabs/nsd
< 4.1.10
Published
Feb 09, 2017
Tracked Since
Feb 18, 2026