vulnerability
CVE-2017-14491: DNSMasq: Heap buffer overflow vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | 2017-10-02 | 2017-10-02 | 2017-12-04 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
2017-10-02
Added
2017-10-02
Modified
2017-12-04
Description
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.
Solution
dnsmasq-upgrade-latest
References
- BID-101085
- BID-101977
- CERT-VN-973527
- CVE-2017-14491
- https://attackerkb.com/topics/CVE-2017-14491
- DEBIAN-DSA-3989
- REDHAT-RHSA-2017:2836
- REDHAT-RHSA-2017:2837
- REDHAT-RHSA-2017:2838
- REDHAT-RHSA-2017:2839
- REDHAT-RHSA-2017:2840
- REDHAT-RHSA-2017:2841
- URL-https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.