CVE-2011-5056

The authoritative server in MaraDNS through 2.0.04 computes hash values for DNS data without restricting the ability to trigger hash collisions predictably, which might allow local users to cause a denial of service (CPU consumption) via crafted records in zone files, a different vulnerability than CVE-2012-0024.
References
Link Resource
http://samiam.org/blog/20111229.html Patch Third Party Advisory
http://www.securitytracker.com/id?1026820 Third Party Advisory VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/72258 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:maradns:maradns:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2012-01-08 00:55

Updated : 2024-02-04 17:54


NVD link : CVE-2011-5056

Mitre link : CVE-2011-5056

CVE.ORG link : CVE-2011-5056


JSON object : View

Products Affected

maradns

  • maradns
CWE
CWE-400

Uncontrolled Resource Consumption