|
|
PADL Software nss_ldap DNS查询响应拒绝服务漏洞
发布时间:2002-11-13
更新时间:2002-11-13
严重程度:高
威胁程度:远程拒绝服务
错误类型:边界检查错误
利用方式:服务器模式
BUGTRAQ ID:6130
受影响系统Padl Software nss_ldap Build 85
+ RedHat Linux 6.1 alpha
+ RedHat Linux 6.1 i386
+ RedHat Linux 6.1 sparc
Padl Software nss_ldap Build 198
Padl Software nss_ldap Build 194
+ MandrakeSoft Linux Mandrake 9.0
Padl Software nss_ldap Build 192
Padl Software nss_ldap Build 191
Padl Software nss_ldap Build 190
Padl Software nss_ldap Build 189
Padl Software nss_ldap Build 188
Padl Software nss_ldap Build 187
Padl Software nss_ldap Build 186
Padl Software nss_ldap Build 185.3
Padl Software nss_ldap Build 185.2
Padl Software nss_ldap Build 185.1
Padl Software nss_ldap Build 185
Padl Software nss_ldap Build 184
Padl Software nss_ldap Build 183
Padl Software nss_ldap Build 181
Padl Software nss_ldap Build 180
Padl Software nss_ldap Build 173
+ MandrakeSoft Linux Mandrake 8.2
+ MandrakeSoft Linux Mandrake 8.2 ppc
Padl Software nss_ldap Build 172
+ MandrakeSoft Linux Mandrake 8.1
+ MandrakeSoft Linux Mandrake 8.1 ia64
Padl Software nss_ldap Build 122
+ MandrakeSoft Linux Mandrake 7.0
+ MandrakeSoft Linux Mandrake 7.1
+ MandrakeSoft Linux Mandrake 7.2
+ MandrakeSoft Single Network Firewall 7.2
Padl Software nss_ldap Build 121
Padl Software nss_ldap Build 113
+ RedHat Linux 7.0
Padl Software nss_ldap Build 107
+ MandrakeSoft Linux Mandrake 8.0
+ MandrakeSoft Linux Mandrake 8.0 ppc
Padl Software nss_ldap Build 105
+ RedHat Linux 6.2 alpha
+ RedHat Linux 6.2 i386
+ RedHat Linux 6.2 sparc 详细描述
nss_ldap在处理DNS查询回应是存在漏洞,nss_ldap不能识别已经被截短过的DNS查询回应,处理这样的回应请求会导致内存访问越界,从而使nss_ldap崩溃。
解决方案
此漏洞存在于Build 199之前的软件版本中,建议升级到最新版本。
相关信息
|
