Stack-based buffer overflow in dnstracer through 1.9 allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a command line with a long name argument that is mishandled in a strcpy call for argv[0]. An example threat model is a web application that launches dnstracer with an untrusted name string.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-06-05T11:12:00
Updated: 2024-08-05T17:02:44.458Z
Reserved: 2017-06-04T00:00:00
Link: CVE-2017-9430
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-06-05T11:29:00.183
Modified: 2017-08-12T01:29:08.110
Link: CVE-2017-9430
Redhat
No data.