Heap-based buffer overflow in the ldns_rr_new_frm_str_internal function in ldns before 1.6.11 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Resource Record (RR) with an unknown type containing input that is longer than a specified length.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2011-11-04 14:55
Updated : 2016-12-07 19:02
NVD link : CVE-2011-3581
Mitre link : CVE-2011-3581
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
nlnetlabs
- ldns