NVD

Id
48396  
Name
CVE-2009-1086  
Description
Heap-based buffer overflow in the ldns_rr_new_frm_str_internal function in ldns 1.4.x allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via a DNS resource record (RR) with a long (1) class field (clas variable) and possibly (2) TTL field.  
Reject
 
CVSS Version
2  
CVSS Score
6.4  
Severity
Medium  
CVSS Base Score
6.4  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:P/A:P)  
Pub Date
2017-01-07  
Published
2009-03-25  
Modified Date
2009-05-15  
Seq
2009-1086  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
243382 48396 CVE-2009-1086 SUSE-SR:2009:010  View
243383 48396 CVE-2009-1086 DSA-1795  View
243384 48396 CVE-2009-1086 http://www.nlnetlabs.nl/bugs/show_bug.cgi?id=232  View
243385 48396 CVE-2009-1086 http://www.nlnetlabs.nl/svn/ldns/tags/release-1.5.0/Changelog  View
243386 48396 CVE-2009-1086 [oss-security] 20090324 CVE id request: ldns  View
243387 48396 CVE-2009-1086 34233  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
43536 JVNDB-2009-004543 ldns の ldns_rr_new_frm_str_internal 関数におけるヒープベースのバッファオーバーフローの脆弱性 ldns の ldns_rr_new_frm_str_internal 関数には、ヒープベースのバッファオーバーフローの脆弱性が存在します。 CVE-2009-1086 38517 CVE-2009-1086 48396 6.4 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-004543.html 2009-03-25 2012-09-25 View