CVE-2008-2357

by Fred · 21/05/2008

Stack-based buffer overflow in the split_redraw function in split.c in mtr before 0.73, when invoked with the -p (aka –split) option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the ns_name_ntop function in resolv/ns_name.c in glibc and the proper fix should be in glibc; if so, then this should not be treated as a vulnerability in mtr.

Date published : 2008-05-21

http://www.securityfocus.com/bid/29290

http://www.securityfocus.com/archive/1/492260/100/0/threaded

CVE-2008-2357

Similar

Recent Posts

Categories

CVE-2008-2357

Share this:

Similar

Recent Posts

Categories

Tags