CVE-2008-0061Maradns vulnerability

4 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
1.8%
top 17.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
MaradnsDebian Maradns
Timeline
PublishedJan 3
Latest updateMay 1

Description

MaraDNS 1.0 before 1.0.41, 1.2 before 1.2.12.08, and 1.3 before 1.3.07.04 allows remote attackers to cause a denial of service via a crafted DNS packet that prevents an authoritative name (CNAME) record from resolving, aka "improper rotation of resource records."

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

debiandebian/maradns< maradns 1.2.12.08-1 (bullseye)
Debianmaradns/maradns< 1.2.12.08-1
NVDmaradns/maradns57 versions+56

🔴Vulnerability Details

2
GHSA
GHSA-7q5w-9vr3-4hw8: MaraDNS 12022-05-01
OSV
CVE-2008-0061: MaraDNS 12008-01-03

📋Vendor Advisories

1
Debian
CVE-2008-0061: maradns - MaraDNS 1.0 before 1.0.41, 1.2 before 1.2.12.08, and 1.3 before 1.3.07.04 allows...2008
CVE-2008-0061 — Debian Maradns vulnerability | cvebase