CVE-2009-0858
published 2009-03-09CVE-2009-0858: The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows…
PriorityP339medium5.8CVSS 2.0
AVNACMAuNCNIPAP
EXPLOIT
EPSS
6.28%
92.7th percentile
The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| d.j.bernstein | djbdns | <= 1.05 | — |
| d.j.bernstein | djbdns | >= 0 < 1:1.05-5 | 1:1.05-5 |
| d.j.bernstein | djbdns | >= 0 < 1:1.05-5 | 1:1.05-5 |
| d.j.bernstein | djbdns | >= 0 < 1:1.05-5 | 1:1.05-5 |
| d.j.bernstein | djbdns | >= 0 < 1:1.05-5 | 1:1.05-5 |
| debian | djbdns | < djbdns 1:1.05-5 (bookworm) | djbdns 1:1.05-5 (bookworm) |
CVSS provenance
nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:P
osv5.8MEDIUM
vendor_debian5.8LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-f296-f6r3-pgjg: The response_addname function in response
ghsa_unreviewed·2022-05-02
CVE-2009-0858 [MEDIUM] CWE-20 GHSA-f296-f6r3-pgjg: The response_addname function in response
The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain.
OSV
CVE-2009-0858: The response_addname function in response
osv·2009-03-09·CVSS 5.8
CVE-2009-0858 [MEDIUM] CVE-2009-0858: The response_addname function in response
The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain.
Debian
CVE-2009-0858: djbdns - The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 a...
vendor_debian·2009·CVSS 5.8
CVE-2009-0858 [MEDIUM] CVE-2009-0858: djbdns - The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 a...
The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain.
Scope: local
bookworm: resolved (fixed in 1:1.05-5)
bullseye: resolved (fixed in 1:1.05-5)
forky: resolved (fixed in 1:1.05-5)
sid: resolved (fixed in 1:1.05-5)
trixie: resolved (fixed in 1:1.05-5)
No detection rules found.
No writeups or analysis indexed.
http://it.slashdot.org/article.pl?sid=09/03/05/2014249http://marc.info/?l=djbdns&m=123554945710038http://marc.info/?l=djbdns&m=123613000920446&w=2http://secunia.com/advisories/35820http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/http://www.debian.org/security/2009/dsa-1831http://www.securityfocus.com/archive/1/501294/100/0/threadedhttp://www.securityfocus.com/archive/1/501340/100/0/threadedhttp://www.securityfocus.com/archive/1/501479/100/0/threadedhttp://www.securityfocus.com/bid/33937https://exchange.xforce.ibmcloud.com/vulnerabilities/49003http://it.slashdot.org/article.pl?sid=09/03/05/2014249http://marc.info/?l=djbdns&m=123554945710038http://marc.info/?l=djbdns&m=123613000920446&w=2http://secunia.com/advisories/35820http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/http://www.debian.org/security/2009/dsa-1831http://www.securityfocus.com/archive/1/501294/100/0/threadedhttp://www.securityfocus.com/archive/1/501340/100/0/threadedhttp://www.securityfocus.com/archive/1/501479/100/0/threadedhttp://www.securityfocus.com/bid/33937https://exchange.xforce.ibmcloud.com/vulnerabilities/49003
2009-03-09
Published