CVE-2009-1755 — Off-by-one Error in NSD

CWE-1897 documents7 sources

Severity

5.0MEDIUMNVD

EPSS

1.8%

top 17.21%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nlnetlabs NSD

Timeline

PublishedMay 22

Latest updateMay 2

Description

Off-by-one error in the packet_read_query_section function in packet.c in nsd 3.2.1, and process_query_section in query.c in nsd 2.3.7, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a buffer overflow.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶Debiannlnetlabs/nsd< 2.3.7-3+3

▶NVDnlnetlabs/nsd11 versions+10

Patches

Patch: bugs.debian.org ↗Patch: bugs.debian.org ↗Patch: www.nlnetlabs.nl ↗

🔴Vulnerability Details

GHSA

GHSA-hvfw-j69f-c8f3: Off-by-one error in the packet_read_query_section function in packet↗2022-05-02

▶

CVEList

CVE-2009-1755: Off-by-one error in the packet_read_query_section function in packet↗2009-05-22

▶

OSV

CVE-2009-1755: Off-by-one error in the packet_read_query_section function in packet↗2009-05-22

▶

📋Vendor Advisories

Red Hat

nsd: one-byte buffer overflow in low-level DNS packet decoding routine↗2009-05-19

▶

Debian

CVE-2009-1755: nsd - Off-by-one error in the packet_read_query_section function in packet.c in nsd 3....↗2009

▶

💬Community

Bugzilla

CVE-2009-1755 nsd: one-byte buffer overflow in low-level DNS packet decoding routine↗2009-05-19

▶