CVE-2015-3294

Severity

64%

Complexity

99%

Confidentiality

81%

The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.

The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.

CVSS 2.0 Base Score 6.4. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:N/A:P).

Overview

First reported 9 years ago

2015-05-08 14:59:00

Last updated 6 years ago

2018-10-09 19:56:00

Affected Software

Oracle Solaris 11.2

11.2

References

openSUSE-SU-2015:0857

[Dnsmasq-discuss] 20150407 dnsmsaq potential vulnerability

Exploit

[Dnsmasq-discuss] 20150407 dnsmsaq potential vulnerability

Third Party Advisory

http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commitdiff;h=ad4a8ff7d9097008d7623df8543df435bfddeac8

Patch

DSA-3251

Vendor Advisory

http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html

Third Party Advisory

20150423 Dnsmasq 2.72 Unchecked returned value

74452

1032195

USN-2593-1

Vendor Advisory

GLSA-201512-01

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.