CVE-2005-0036
CVSS5.0
发布时间 :2005-12-31 00:00:00
修订时间 :2008-09-05 16:45:07
NMCOS    

[原文]The DNS implementation in DeleGate 8.10.2 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an infinite loop.


[CNNVD]DeleGate DNS消息解压远程拒绝服务漏洞(CNNVD-200512-967)

        DeleGate 8.10.2及之前版本使用的DNS使得远程攻击者可以通过一个带有不正确偏移量的标签长度字节的DNS压缩包,导致无限循环,从而发起拒绝服务攻击。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: NONE [对系统的机密性无影响]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:delegate:delegate:8.9.5
cpe:/a:delegate:delegate:7.8.2
cpe:/a:delegate:delegate:8.3.4
cpe:/a:delegate:delegate:8.9.6
cpe:/a:etl:delegate:5.9
cpe:/a:delegate:delegate:8.3.3
cpe:/a:delegate:delegate:7.7.1
cpe:/a:delegate:delegate:8.9.4
cpe:/a:delegate:delegate:7.8.1
cpe:/a:delegate:delegate:8.10.1
cpe:/a:delegate:delegate:8.9.1
cpe:/a:delegate:delegate:8.5.0
cpe:/a:delegate:delegate:7.7.0
cpe:/a:delegate:delegate:5.9.3
cpe:/a:delegate:delegate:8.4.0
cpe:/a:etl:delegate:6.0
cpe:/a:delegate:delegate:7.9.11
cpe:/a:delegate:delegate:8.10
cpe:/a:delegate:delegate:8.9.3
cpe:/a:delegate:delegate:8.9
cpe:/a:delegate:delegate:8.10.2
cpe:/a:delegate:delegate:8.9.2
cpe:/a:delegate:delegate:7.8.0

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0036
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0036
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200512-967
(官方数据源) CNNVD

- 其它链接及资源

http://www.niscc.gov.uk/niscc/docs/re-20050524-00432.pdf?lang=en
(VENDOR_ADVISORY)  MISC  http://www.niscc.gov.uk/niscc/docs/re-20050524-00432.pdf?lang=en
http://www.niscc.gov.uk/niscc/docs/al-20050524-00433.html
(PATCH)  MISC  http://www.niscc.gov.uk/niscc/docs/al-20050524-00433.html
http://www.securityfocus.com/bid/13729
(UNKNOWN)  BID  13729
http://www.osvdb.org/25291
(UNKNOWN)  OSVDB  25291

- 漏洞信息

DeleGate DNS消息解压远程拒绝服务漏洞
中危 设计错误
2005-12-31 00:00:00 2010-06-23 00:00:00
远程  
        DeleGate 8.10.2及之前版本使用的DNS使得远程攻击者可以通过一个带有不正确偏移量的标签长度字节的DNS压缩包,导致无限循环,从而发起拒绝服务攻击。

- 公告与补丁

        

- 漏洞信息

19003
Multiple Vendor Unspecified Compressed DNS Message DoS (1)
Remote / Network Access Denial of Service
Loss of Availability
Exploit Public

- 漏洞描述

Cisco's DNS implementation in certain products contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends a specially crafted DNS packet(s), and will result in loss of availability for the devices. No further details have been provided.

- 时间线

2005-05-24 Unknow
2005-05-24 Unknow

- 解决方案

Upgrade to the respective version(s) documented in the Cisco software matrix or higher, as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

- 相关参考

- 漏洞作者

- 漏洞信息

Multiple Vendor DNS Message Decompression Remote Denial of Service Vulnerability
Design Error 13729
Yes No
2005-05-24 12:00:00 2009-07-12 02:56:00
Discovered by Dr. Steve Beaty from the Department of Mathematical and Computer Sciences at the Metropolitan State College of Denver.

- 受影响的程序版本

PowerDNS PowerDNS 2.9.16
PowerDNS PowerDNS 2.9.15
+ Gentoo Linux
PowerDNS PowerDNS 2.8
PowerDNS PowerDNS 2.0 RC1
dnrd dnrd 2.10
- Debian Linux 2.2 r3
+ SmoothWall SmoothWall 0.9.9 SE
+ SmoothWall SmoothWall 0.9.9
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6
dnrd dnrd 2.9
dnrd dnrd 2.8
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6
dnrd dnrd 2.7
dnrd dnrd 2.6
dnrd dnrd 2.5
dnrd dnrd 2.4
dnrd dnrd 2.3
dnrd dnrd 2.2
dnrd dnrd 2.1
dnrd dnrd 2.0
dnrd dnrd 1.4
dnrd dnrd 1.3
dnrd dnrd 1.2
dnrd dnrd 1.1
dnrd dnrd 1.0
DeleGate DeleGate 8.10.2
DeleGate DeleGate 8.10.1
DeleGate DeleGate 8.10
DeleGate DeleGate 8.9.6
DeleGate DeleGate 8.9.5
DeleGate DeleGate 8.9.4
DeleGate DeleGate 8.9.3
DeleGate DeleGate 8.9.2
DeleGate DeleGate 8.9.1
DeleGate DeleGate 8.9
DeleGate DeleGate 8.5 .0
DeleGate DeleGate 8.4 .0
DeleGate DeleGate 8.3.4
DeleGate DeleGate 8.3.3
DeleGate DeleGate 7.9.11
DeleGate DeleGate 7.8.2
DeleGate DeleGate 7.8.1
DeleGate DeleGate 7.8 .0
- FreeBSD FreeBSD 5.0
- HP HP-UX 11.20
- IBM AIX 4.3.3
- Microsoft Windows 2000 Professional SP3
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98SE
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- OpenBSD OpenBSD 2.9
- OpenBSD OpenBSD 3.0
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6
DeleGate DeleGate 7.7.1
- FreeBSD FreeBSD 5.0
- HP HP-UX 11.20
- IBM AIX 4.3.3
- Microsoft Windows 2000 Professional SP3
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98SE
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- OpenBSD OpenBSD 2.9
- OpenBSD OpenBSD 3.0
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6
DeleGate DeleGate 7.7 .0
Cisco Unity Express
Cisco Subscriber Edge Services Manager (SESM) 3.3(1)
Cisco Subscriber Edge Services Manager (SESM) 3.2(2)
Cisco Subscriber Edge Services Manager (SESM) 3.2(1)
Cisco IP Phone 7912 0
Cisco IP Phone 7905
Cisco IP Phone 7902
Cisco Content Router 4450
Cisco Content Router 4430 4.1
Cisco Content Router 4430 4.0
Cisco Content Router 4430
Cisco Content Engine Module for Cisco Router 3800 Series
Cisco Content Engine Module for Cisco Router 3700 Series
Cisco Content Engine Module for Cisco Router 3600 Series
Cisco Content Engine Module for Cisco Router 2800 Series
Cisco Content Engine Module for Cisco Router 2600 Series
Cisco Content Engine 7325
Cisco Content Engine 7320 4.1
Cisco Content Engine 7320 4.0
Cisco Content Engine 7320 3.1
Cisco Content Engine 7320 2.2 .0
Cisco Content Engine 7320
Cisco Content Engine 590 4.1
Cisco Content Engine 590 4.0
Cisco Content Engine 590 3.1
Cisco Content Engine 590 2.2 .0
Cisco Content Engine 590
Cisco Content Engine 565
Cisco Content Engine 560 4.1
Cisco Content Engine 560 4.0
Cisco Content Engine 560 3.1
Cisco Content Engine 560 2.2 .0
Cisco Content Engine 560
Cisco Content Engine 510
Cisco Content Engine 507 4.1
Cisco Content Engine 507 4.0
Cisco Content Engine 507 3.1
Cisco Content Engine 507 2.2 .0
Cisco Content Engine 507
Cisco Content Distribution Manager 4670
Cisco Content Distribution Manager 4650 4.1
Cisco Content Distribution Manager 4650 4.0
Cisco Content Distribution Manager 4650
Cisco Content Distribution Manager 4630 4.1
Cisco Content Distribution Manager 4630 4.0
Cisco Content Distribution Manager 4630
Cisco ATA-188
Cisco ATA-186
Cisco Application & Content Networking Software (ACNS)
Cisco Application & Content Networking Software 5.2.3 .9
Cisco Application & Content Networking Software 5.2.1 .7
Cisco Application & Content Networking Software 5.2
Cisco Application & Content Networking Software 5.1.13 .7
Cisco Application & Content Networking Software 5.1.11 .6
Cisco Application & Content Networking Software 5.1
Cisco Application & Content Networking Software 5.0.17 .6
Cisco Application & Content Networking Software 5.0.5
Cisco Application & Content Networking Software 5.0.3
Cisco Application & Content Networking Software 5.0.1
Cisco Application & Content Networking Software 5.0
Cisco Application & Content Networking Software 4.2.11
Cisco Application & Content Networking Software 4.2.9
Cisco Application & Content Networking Software 4.2.7
Cisco Application & Content Networking Software 4.2
Cisco Application & Content Networking Software 4.1.3
Cisco Application & Content Networking Software 4.1.1
Cisco Application & Content Networking Software 4.0.3
Cisco Application & Content Networking Software
PowerDNS PowerDNS 2.9.17
+ Gentoo Linux
dnrd dnrd 2.18
DeleGate DeleGate 8.11.1
DeleGate DeleGate 8.11
DeleGate DeleGate 8.10.6
DeleGate DeleGate 8.10.5
DeleGate DeleGate 8.10.4
DeleGate DeleGate 8.10.3
Cisco Subscriber Edge Services Manager (SESM) 3.3(2)
Cisco Application & Content Networking Software 5.3.3
Cisco Application & Content Networking Software 5.2.7
Cisco Application & Content Networking Software 5.1.15

- 不受影响的程序版本

PowerDNS PowerDNS 2.9.17
+ Gentoo Linux
dnrd dnrd 2.18
DeleGate DeleGate 8.11.1
DeleGate DeleGate 8.11
DeleGate DeleGate 8.10.6
DeleGate DeleGate 8.10.5
DeleGate DeleGate 8.10.4
DeleGate DeleGate 8.10.3
Cisco Subscriber Edge Services Manager (SESM) 3.3(2)
Cisco Application & Content Networking Software 5.3.3
Cisco Application & Content Networking Software 5.2.7
Cisco Application & Content Networking Software 5.1.15

- 漏洞讨论

Multiple DNS vendors are susceptible to a remote denial-of-service vulnerability. This issue affects both DNS servers and clients.

This issue arises when an affected application handles a specially crafted DNS message.

A successful attack would crash the affected client or server.

- 漏洞利用


Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com

- 解决方案


The following versions are not affected by this issue; users are advised to upgrade:

- DeleGate 8.10.3 and subsequent versions.
- dnrd 2.18 and subsequent versions.
- PowerDNS 2.9.17.

Cisco has released advisory cisco-sn-20050524-dns to address this issue. Please see the referenced advisory for further information on obtaining fixes.

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站