maxdname bug
Summary:
Buffer overflow in obscure buffer
CVE:
CVE-1999-0849
Posting date:
10 Nov 1999
Program Impacted:
BIND
Versions affected:
4.9.5, 4.9.5 patchlevel 1, 4.9.6, 4.9.7, 4.9.8, 8.1, 8.1.1, 8.1.2, 8.2, 8.2 patchlevel 1, 8.2.1, 8.2.2, 8.2.2 patchlevel 1
Severity:
Minor
Exploitable:
Remotely Description:
The use of sprintf() with data from the network can result in a buffer overflow condition which may result in unexpected behavior. Because of the placement of the buffer which might be overflowed, it is unlikely this bug will result in serious consequences, however the possibility of a remotely triggered server crash cannot be ruled out.
Workarounds:
None.
Active exploits:
None known at this time.
