Vulnerabilities > CVE-2002-2097 - Denial of Service vulnerability in MaraDNS

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
maradns
nessus

Summary

The compression code in MaraDNS before 0.9.01 allows remote attackers to cause a denial of service via crafted DNS packets.

Nessus

NASL familyDNS
NASL idMARADNS_0_9_01.NASL
descriptionAccording to its self-reported version number, the MaraDNS server running on the remote host is affected by a memory leak issue due to the compression code. This issue could allow a remote attacker to cause a remote denial of service by sending a specially crafted DNS packet.
last seen2020-06-01
modified2020-06-02
plugin id73474
published2014-04-11
reporterThis script is Copyright (C) 2014-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/73474
titleMaraDNS 0.5.x < 0.5.31 / 0.9.x < 0.9.01 Compression Code Remote DoS