oval:org.mitre.oval:def:20245
| Definition Id: oval:org.mitre.oval:def:20245 | |||
| Oval ID: | oval:org.mitre.oval:def:20245 | ||
| Title: | DSA-1795-1 ldns - arbitrary code execution | ||
| Description: | Stefan Kaltenbrunner discovered that ldns, a library and set of utilities to facilitate DNS programming, did not correctly implement a buffer boundary check in its RR DNS record parser. This weakness could enable overflow of a heap buffer if a maliciously-crafted record is parsed, potentially allowing the execution of arbitrary code. The scope of compromise will vary with the context in which ldns is used, and could present either a local or remote attack vector. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1795-1 CVE-2009-1086 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 5.0 | Product(s): | ldns |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:6513 | |||
| Oval ID: | oval:org.mitre.oval:def:6513 | ||
| Title: | Debian GNU/Linux 5.0 is installed | ||
| Description: | Debian GNU/Linux 5.0 (lenny) is installed | ||
| Family: | unix | Class: | inventory |
| Reference(s): | cpe:/o:debian:debian_gnu/linux:5.0 | Version: | 7 |
| Platform(s): | Debian GNU/Linux 5.0 | Product(s): | |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:20245 | |||
