Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

NSD packet.c Off-By-One Buffer Overflow

Medium

Synopsis

The remote DNS server is vulnerable to a remote buffer overflow attack.

Description

The remote host is running a version of NSD DNS Server which has a stack buffer overflow vulnerability. A remote attacker could overwrite one byte in memory, leading to a denial of service. It is possible, but unlikely, that this vulnerability could result in remote code execution.

Solution

Upgrade to NSD version 3.2.2 or later, or apply the patch referenced in the vendor's advisory.