← voltar
CVE-2008-2469

CVE-2008-2469

EPSS 22.3%
Heap-based buffer overflow in the SPF_dns_resolv_lookup function in Spf_dns_resolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field.
Produtos afetados
n/a · n/a
PoCs públicas encontradas1
cve_referencewww.exploit-db.com/exploits/6805não verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://bugs.gentoo.org/show_bug.cgi?format=multiple&id=242254https://answers.launchpad.net/ubuntu/gutsy/+source/libspf2/1.2.5.dfsg-4ubuntu0.7.10.1https://bugs.launchpad.net/ubuntu/feisty/+source/libspf2/+bug/271025http://secunia.com/advisories/32396http://secunia.com/advisories/32450http://secunia.com/advisories/32496http://secunia.com/advisories/32720http://security.gentoo.org/glsa/glsa-200810-03.xmlhttp://securityreason.com/securityalert/4487https://exchange.xforce.ibmcloud.com/vulnerabilities/46055https://www.exploit-db.com/exploits/6805http://up2date.astaro.com/2008/11/up2date_7305_released.html