Multiple unspecified vulnerabilities in DeleGate 9.x before 9.0.6 and 8.x before 8.11.6 allow remote attackers to cause a denial of service via crafted DNS responses messages that cause (1) a buffer over-read or (2) infinite recursion, which can trigger a segmentation fault or invalid memory access, as demonstrated by the OUSPG PROTOS DNS test suite.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P
Vendors Products
Delegate
  • Delegate

Configuration 1 [-]

OR cpe:2.3:a:delegate:delegate:7.7.0:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:7.7.1:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:7.8.0:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:7.8.1:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:7.8.2:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:7.9.11:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.3.3:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.3.4:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.4.0:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.5.0:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.1:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.2:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.3:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.4:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.5:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.9.6:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.10:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.10.1:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.10.2:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.10.3:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.10.4:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.10.5:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.10.6:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.11:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.11.1:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.11.2:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.11.3:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.11.4:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:8.11.5:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:9.0:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:9.0.1:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:9.0.2:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:9.0.3:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:9.0.4:*:*:*:*:*:*:*
cpe:2.3:a:delegate:delegate:9.0.5:*:*:*:*:*:*:*
References
Link Resource
http://secunia.com/advisories/19750 Patch Vendor Advisory
http://securitytracker.com/id?1015991 Patch
http://www.kb.cert.org/vuls/id/955777 US Government Resource
http://www.niscc.gov.uk/niscc/docs/br-20060425-00311.html?lang=en Vendor Advisory
http://www.niscc.gov.uk/niscc/docs/re-20060425-00312.pdf?lang=en Vendor Advisory
http://www.securityfocus.com/bid/17691 Patch
http://www.vupen.com/english/advisories/2006/1505
http://www.vupen.com/english/advisories/2006/1506
https://exchange.xforce.ibmcloud.com/vulnerabilities/26081
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2006-04-27T22:00:00

Updated: 2017-07-19T15:57:01

Reserved: 2006-04-27T00:00:00

Link: CVE-2006-2072

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2006-04-27T22:02:00.000

Modified: 2017-07-20T01:31:09.600

Link: CVE-2006-2072

JSON object: View

cve-icon Redhat Information

No data.

CWE