Denial of Service Vulnerability in MaraDNS Product by MaraDNS
CVE-2010-2444

Currently unrated

Key Information:

Vendor: Maradns
Status: Maradns
Vendor: CVE Published:; 25 June 2010

What is CVE-2010-2444?

A vulnerability exists in MaraDNS versions prior to 1.4.03, where the Csv2_parse.c component fails to correctly process hostnames lacking a terminating dot. This oversight can lead to remote attackers exploiting the system by sending specially crafted csv2 zone files, resulting in a denial of service due to a NULL pointer dereference.

References

http://www.openwall.com/lists/oss-security/2010/06/24/5

mailing-listx_refsource_MLIST

http://www.openwall.com/lists/oss-security/2010/06/09/4

mailing-listx_refsource_MLIST

http://maradns.org/download/maradns-1.4.02-parse_segfault...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jun 25, 2010

CVE-2010-2444 Data

JSON

Maradns

What is CVE-2010-2444?

References

Timeline