|
|
CVE Reference: CVE-2008-2469 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-2469 |
|
|
Description: Heap-based buffer overflow in the SPF_dns_resolv_lookup function in Spf_dns_resolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/46055 SREASON http://securityreason.com/securityalert/4487 SAID Secunia Advisory: SA32396 Secunia Advisory: SA32450 Secunia Advisory: SA32720 Secunia Advisory: SA32496 MISC http://www.doxpara.com/?page_id=1256 http://www.doxpara.com/?p=1263 MILW0RM http://www.milw0rm.com/exploits/6805 GENTOO http://security.gentoo.org/glsa/glsa-200810-03.xml DEBIAN http://www.debian.org/security/2008/dsa-1659 CONFIRM http://up2date.astaro.com/2008/11/up2date_7305_released.html http://bugs.gentoo.org/show_bug.cgi?format=multiple&id=242254 CERT-VN 183657 BID 31881 |
|
| Return to the previous page. |
