Vulnerabilities > Maradns > Maradns > 1.3.14
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-05-09 | CVE-2023-31137 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products MaraDNS is open-source software that implements the Domain Name System (DNS). | 7.5 |
2022-11-19 | CVE-2022-30256 | Operation on a Resource after Expiration or Release vulnerability in Maradns An issue was discovered in MaraDNS Deadwood through 3.5.0021 that allows variant V1 of unintended domain name resolution. | 7.5 |
2012-01-08 | CVE-2011-5056 | Resource Exhaustion vulnerability in Maradns The authoritative server in MaraDNS through 2.0.04 computes hash values for DNS data without restricting the ability to trigger hash collisions predictably, which might allow local users to cause a denial of service (CPU consumption) via crafted records in zone files, a different vulnerability than CVE-2012-0024. | 2.1 |
2010-06-25 | CVE-2010-2444 | Denial-Of-Service vulnerability in MaraDNS parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions before 1.4.03, does not properly handle hostnames that do not end in a "." (dot) character, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted csv2 zone file. network maradns | 4.3 |