CVE-2007-3115
Last modified
CVE-2007-3115 is a vulnerability of currently unknown severity. Multiple memory leaks in server/MaraDNS.c in MaraDNS before 1.2.12.06, and 1.3.x before 1.3.05, allow remote attackers to cause a denial of service (memory consumption) via (1) reverse lookups or (2) requests for records in a class other than Internet (IN), a different set of affected versions than CVE-2007-3114 and CVE-2007-3116.. EPSS estimates a 2.41% chance of exploitation in the next 30 days.
Description
Multiple memory leaks in server/MaraDNS.c in MaraDNS before 1.2.12.06, and 1.3.x before 1.3.05, allow remote attackers to cause a denial of service (memory consumption) via (1) reverse lookups or (2) requests for records in a class other than Internet (IN), a different set of affected versions than CVE-2007-3114 and CVE-2007-3116.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Maradns | Maradns | 1.2.12.01 |
| Maradns | Maradns | 1.2.12.02 |
| Maradns | Maradns | 1.2.12.03 |
| Maradns | Maradns | 1.2.12.04 |
| Maradns | Maradns | 1.2.12.05 |
| Maradns | Maradns | 1.3.01 |
| Maradns | Maradns | 1.3.02 |
| Maradns | Maradns | 1.3.03 |
| Maradns | Maradns | 1.3.04 |
References
- http://secunia.com/advisories/25406Patch, Vendor Advisory
- http://secunia.com/advisories/25767Vendor Advisory
- http://www.vupen.com/english/advisories/2007/2263Vendor Advisory
- http://secunia.com/advisories/25406Patch, Vendor Advisory
- http://secunia.com/advisories/25767Vendor Advisory
- http://www.vupen.com/english/advisories/2007/2263Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-3115?
How severe is CVE-2007-3115?
How do I fix CVE-2007-3115?
Are you affected by CVE-2007-3115?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST