CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2013-0198 – Gentoo Linux Security Advisory 201406-24
https://notcve.org/view.php?id=CVE-2013-0198
04 Mar 2013 — Dnsmasq before 2.66test2, when used with certain libvirt configurations, replies to queries from prohibited interfaces, which allows remote attackers to cause a denial of service (traffic amplification) via spoofed TCP based DNS queries. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-3411. Dnsmasq anterior a v2.66test2, cuando se utiliza con ciertas configuraciones de libvirt, responde a consultas desde interfaces prohibidas, lo que permite a atacantes remotos provocar una denegac... • http://www.mandriva.com/security/advisories?name=MDVSA-2013:072 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2012-3411 – libvirt+dnsmasq: DNS configured to answer DNS queries from non-virtual networks
https://notcve.org/view.php?id=CVE-2012-3411
04 Mar 2013 — Dnsmasq before 2.63test1, when used with certain libvirt configurations, replies to requests from prohibited interfaces, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed DNS query. Dnsmasq anterior a v2.63test1, cuando se usa con determinadas configuraciones en libvirt, contesta a las peticiones desde interfaces prohibidas, lo que permite a atacantes remotos provocar una denegación de servicios (amplificación de tráfico) a través de una petición DNS falsificad... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683372 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 4%CPEs: 76EXPL: 1CVE-2009-2957 – Dnsmasq < 2.50 - Heap Overflow / Null Pointer Dereference
https://notcve.org/view.php?id=CVE-2009-2957
02 Sep 2009 — Heap-based buffer overflow in the tftp_request function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long filename in a TFTP packet, as demonstrated by a read (aka RRQ) request. Desbordamiento de búfer basado en memoria dinámica en la función tftp_request en tftp.c en dnsmasq anterior v2.50, cuando --enable-tftp es usado, puede permitir a atacantes remotos ejecutar código a su elección a través de un nombre de fichero largo en un ... • https://www.exploit-db.com/exploits/9617 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 76EXPL: 1CVE-2009-2958 – Dnsmasq < 2.50 - Heap Overflow / Null Pointer Dereference
https://notcve.org/view.php?id=CVE-2009-2958
02 Sep 2009 — The tftp_request function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a TFTP read (aka RRQ) request with a malformed blksize option. La función tftp_request en tftp.c en dnsmasq en versiones anteriores a la 2.50, cuando se usa --enable-tftp, permite a atacantes remotos provocar una denegación de servicio (referencia a un puntero nulo y caída del demonio) mediante una petición de lectura TFT... • https://www.exploit-db.com/exploits/9617 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2008-3350
https://notcve.org/view.php?id=CVE-2008-3350
28 Jul 2008 — dnsmasq 2.43 allows remote attackers to cause a denial of service (daemon crash) by (1) sending a DHCPINFORM while lacking a DHCP lease, or (2) attempting to renew a nonexistent DHCP lease for an invalid subnet as an "unknown client," a different vulnerability than CVE-2008-3214. dnsmasq 2.43 permite a atacantes remotos provocar una denegación de servicio (caída de monio) mediante (1) el envío de un DHCPINFORM en ausencia de una asignación DHCP o (2) intentando renovar una asignación DHCP no existente para ... • http://article.gmane.org/gmane.network.dns.dnsmasq.general/2189 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2008-3214
https://notcve.org/view.php?id=CVE-2008-3214
18 Jul 2008 — dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP address that is not in the same network, related to the DHCP NAK response from the daemon. dnsmasq versión 2.25, permite a los atacantes remotos causar una denegación de servicio (bloqueo del demonio) al (1) renovar una concesión inexistente o (2) enviar un DHCPREQUEST para una dirección IP que no está en la misma red, relacionada con la respuesta NAK DH... • http://freshmeat.net/projects/dnsmasq/?branch_id=1991&release_id=217681 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2006-2017
https://notcve.org/view.php?id=CVE-2006-2017
25 Apr 2006 — Dnsmasq 2.29 allows remote attackers to cause a denial of service (application crash) via a DHCP client broadcast reply request. • http://secunia.com/advisories/19760 •
CVSS: 9.8EPSS: 1%CPEs: 7EXPL: 0CVE-2005-0876
https://notcve.org/view.php?id=CVE-2005-0876
26 Mar 2005 — Off-by-one buffer overflow in Dnsmasq before 2.21 may allow attackers to execute arbitrary code via the DHCP lease file. • http://secunia.com/advisories/14691 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-0877
https://notcve.org/view.php?id=CVE-2005-0877
26 Mar 2005 — Dnsmasq before 2.21 allows remote attackers to poison the DNS cache via answers to queries that were not made by Dnsmasq. • http://secunia.com/advisories/14691 • CWE-346: Origin Validation Error •