Dnsmasq TFTP Service Multiple Vulnerabilities Network Vulnerability

Summary

Dnsmasq is prone to a remotely exploitable heap-overflow vulnerability because the software fails to properly bounds-check user-supplied input before copying it into an insufficiently sized memory buffer. Remote attackers can exploit this issue to execute arbitrary machine code in the context of the vulnerable software on the targeted user's computer. Dnsmasq is also prone to a NULL-pointer dereference vulnerability. An attacker can exploit this issue to crash the affected application, denying service to legitimate users. NOTE: The TFTP service must be enabled for this issue to be exploitable this is not the default. Versions *prior to* Dnsmasq 2.50 are vulnerable.

Solution

Updates are available. Please see the references for more information.

References

http://www.coresecurity.com/content/dnsmasq-vulnerabilities
http://www.securityfocus.com/bid/36120
http://www.securityfocus.com/bid/36121
http://www.thekelleys.org.uk/dnsmasq/doc.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-2957, CVE-2009-2958
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Microsoft Windows Media Player '.mpg' Buffer Overflow Vulnerability
Pango Integer Buffer Overflow Vulnerability
IpTools Tiny TCP/IP Servers Remote Buffer Overflow Vulnerability
IrfanView JPEG-2000 Plugin Remote Stack Based Buffer Overflow Vulnerability
ICQ 'ICQToolBar.dll' Buffer Overflow Vulnerability

Dnsmasq TFTP Service multiple vulnerabilities

Take action and discover your vulnerabilities