CVE-2007-3409 — Vulnetix

Try Vulnetix Request Demo

CVE-2007-3409 PUBLISHED CVSS 4.300000190734863 MEDIUM

Net::DNS before 0.60, a Perl module, allows remote attackers to cause a denial of service (stack consumption) via a malformed compressed DNS packet with self-referencing pointers, which triggers an infinite loop.

EPSS 15.24% · 94.6th percentile

Risk Scores

CVSS v2.0

4.300000190734863

EPSS Score

15.24%

94.6th percentile

Affected Products

Vendor	Product	Versions
canonical	ubuntu_linux	6.06, 6.10
n/a	n/a	n/a
debian	debian_linux	3.1, 4.0
net-dns	net\	\

Timeline

Jun 26, 2007 CVE Published
Feb 4, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Feb 13, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score
Aug 31, 2023 EPSS Score
Sep 15, 2023 EPSS Score

References

26231 third-party-advisory
26417 third-party-advisory
29354 third-party-advisory
26014 third-party-advisory
26012 third-party-advisory
http://rt.cpan.org/Public/Bug/Display.html?id=27285 url
oval:org.mitre.oval:def:10595 vdb
DSA-1515 vendor-advisory
http://www.net-dns.org/docs/Changes.html url
1018376 vdb
SUSE-SR:2007:017 vendor-advisory
26543 third-party-advisory
USN-483-1 vendor-advisory
2007-0023 vendor-advisory
MDKSA-2007:146 vendor-advisory
RHSA-2007:0674 vendor-advisory
26055 third-party-advisory
26211 third-party-advisory
26075 third-party-advisory
24669 vdb

…and 7 more

Open in Interactive Console →