MaraDNS 1.3.07.12 and 1.4.08 computes hash values for DNS data without properly restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted queries with the Recursion Desired (RD) bit set. NOTE: this issue exists because of an incomplete fix for CVE-2012-0024.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:15:12
Updated: 2022-10-03T16:15:12
Reserved: 2022-10-03T00:00:00
Link: CVE-2011-5055
JSON object: View
NVD Information
Status : Analyzed
Published: 2012-01-08T00:55:03.503
Modified: 2012-01-09T18:30:15.167
Link: CVE-2011-5055
JSON object: View
Redhat Information
No data.
CWE