Denial of Service Vulnerability in MaraDNS by SamIam
CVE-2012-0024

Currently unrated

Key Information:

Vendor: Maradns
Status: Maradns
Vendor: CVE Published:; 8 January 2012

What is CVE-2012-0024?

The vulnerability found in MaraDNS allows an attacker to exploit predictable hash collisions when computing DNS data values. This can lead to excessive CPU consumption, effectively causing a denial of service. By sending specially crafted queries with the Recursion Desired (RD) bit set, remote attackers can trigger this exploit, impacting the performance and availability of the affected DNS service.

References

http://samiam.org/blog/20111229.html

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=771428

x_refsource_CONFIRM

http://openwall.com/lists/oss-security/2012/01/03/6

mailing-listx_refsource_MLIST

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 8, 2012

CVE-2012-0024 Data

JSON

Maradns

What is CVE-2012-0024?

References

Timeline