CVE-2010-2444
Last modified
CVE-2010-2444 is a vulnerability of currently unknown severity. parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions before 1.4.03, does not properly handle hostnames that do not end in a "." (dot) character, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted csv2 zone file.. EPSS estimates a 1.86% chance of exploitation in the next 30 days.
Description
parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions before 1.4.03, does not properly handle hostnames that do not end in a "." (dot) character, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted csv2 zone file.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Maradns | Maradns | 1.3.03 |
| Maradns | Maradns | 1.3.04 |
| Maradns | Maradns | 1.3.05 |
| Maradns | Maradns | 1.3.06 |
| Maradns | Maradns | 1.3.07.01 |
| Maradns | Maradns | 1.3.07.02 |
| Maradns | Maradns | 1.3.07.03 |
| Maradns | Maradns | 1.3.07.04 |
| Maradns | Maradns | 1.3.07.05 |
| Maradns | Maradns | 1.3.07.06 |
| Maradns | Maradns | 1.3.07.07 |
| Maradns | Maradns | 1.3.07.08 |
| Maradns | Maradns | 1.3.07.09 |
| Maradns | Maradns | 1.3.08 |
| Maradns | Maradns | 1.3.09 |
| Maradns | Maradns | 1.3.10 |
| Maradns | Maradns | 1.3.11 |
| Maradns | Maradns | 1.3.12 |
| Maradns | Maradns | 1.3.13 |
| Maradns | Maradns | 1.3.14 |
| Maradns | Maradns | 1.4.01 |
| Maradns | Maradns | 1.4.02 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2010-2444?
How severe is CVE-2010-2444?
How do I fix CVE-2010-2444?
Are you affected by CVE-2010-2444?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST