icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

DeleGate < 8.11.6 Invalid DNS Response DoS

Medium

Synopsis

A rogue DNS server may crash the remote proxy.

Description

The remote version of this software is vulnerable to a denial of service when processing invalid DNS responses. An attacker may exploit this flaw to disable this service remotely. To exploit this flaw, an attacker would need to be able to inject malformed DNS responses to the queries sent by the remote application.

Solution

Upgrade to version 8.11.6 or higher.