Detections
Analytics

NSD packet.c Off-By-One Buffer Overflow

medium Nessus Network Monitor Plugin ID 5040

Synopsis

The remote DNS server is vulnerable to a remote buffer overflow attack.

Description

The remote host is running a version of NSD DNS Server which has a stack buffer overflow vulnerability. A remote attacker could overwrite one byte in memory, leading to a denial of service. It is possible, but unlikely, that this vulnerability could result in remote code execution.

Solution

Upgrade to NSD version 3.2.2 or later, or apply the patch referenced in the vendor's advisory.

See Also

http://www.nlnetlabs.nl/publications/NSD_vulnerability_announcement.html

Plugin Details

Severity: Medium

ID: 5040

Family: DNS Servers

Published: 8/18/2004

Updated: 3/6/2019

Nessus ID: 38850

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 4.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS v3

Risk Factor: Medium

Base Score: 5.3

Temporal Score: 5.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:X/RL:O/RC:C

Reference Information

BID: 35029