Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

DeleGate < 8.11.6 Invalid DNS Response DoS

Medium

Synopsis

A rogue DNS server may crash the remote proxy.

Description

The remote version of this software is vulnerable to a denial of service when processing invalid DNS responses. An attacker may exploit this flaw to disable this service remotely. To exploit this flaw, an attacker would need to be able to inject malformed DNS responses to the queries sent by the remote application.

Solution

Upgrade to version 8.11.6 or higher.