Nlnetlabs : Security Vulnerabilities, CVEs, Published In 2011
Heap-based buffer overflow in the ldns_rr_new_frm_str_internal function in ldns before 1.6.11 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Resource Record (RR) with an unknown type containing input that is longer than a specified length.
Max CVSS
6.8
EPSS Score
10.13%
Published
2011-11-04
Updated
2016-12-08
daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DNS request that triggers improper error handling.
Max CVSS
4.3
EPSS Score
1.66%
Published
2011-05-31
Updated
2017-08-17
Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.
Max CVSS
5.0
EPSS Score
0.28%
Published
2011-06-02
Updated
2011-06-14
3 vulnerabilities found