CVE-2007-3116 — Missing Release of Memory after Effective Lifetime in Maradns
Severity
7.8HIGHNVD
NVD5.0OSV5.0
EPSS
0.7%
top 27.16%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJun 7
Latest updateMay 1
Description
Memory leak in server/MaraDNS.c in MaraDNS 1.2.12.06 and 1.3.05 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors, a different set of affected versions than CVE-2007-3114 and CVE-2007-3115.
CVSS vector
AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9
Affected Packages3 packages
Patches
🔴Vulnerability Details
6📋Vendor Advisories
3Debian▶
CVE-2007-3114: maradns - Memory leak in server/MaraDNS.c in MaraDNS before 1.2.12.05, and 1.3.x before 1....↗2007
Debian▶
CVE-2007-3116: maradns - Memory leak in server/MaraDNS.c in MaraDNS 1.2.12.06 and 1.3.05 allows remote at...↗2007
Debian▶
CVE-2007-3115: maradns - Multiple memory leaks in server/MaraDNS.c in MaraDNS before 1.2.12.06, and 1.3.x...↗2007