Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0036

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-0036
Last Modified 05 Sep 2008 04:45:07
Published 31 Dec 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0036

Summary

The DNS implementation in DeleGate 8.10.2 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an infinite loop.

Vulnerable Systems

Application

  • Delegate 5.9.3

  • Delegate 7.7.0

  • Delegate 7.7.1

  • Delegate 7.8.0

  • Delegate 7.8.1

  • Delegate 7.8.2

  • Delegate 7.9.11

  • Delegate 8.10

  • Delegate 8.10.1

  • Delegate 8.10.2

  • Delegate 8.3.3

  • Delegate 8.3.4

  • Delegate 8.4.0

  • Delegate 8.5.0

  • Delegate 8.9

  • Delegate 8.9.1

  • Delegate 8.9.2

  • Delegate 8.9.3

  • Delegate 8.9.4

  • Delegate 8.9.5

  • Delegate 8.9.6

  • Etl Delegate 5.9

  • Etl Delegate 6.0


References

MISC - http://www.niscc.gov.uk/niscc/docs/re-20050524-00432.pdf?lang=en

MISC - http://www.niscc.gov.uk/niscc/docs/al-20050524-00433.html

BID - 13729

OSVDB - 25291


Last Updated: 27 May 2016 10:39:38