High severity7.5NVD Advisory· Published Jun 26, 2007· Updated Apr 23, 2026
CVE-2007-3409
CVE-2007-3409
Description
Net::DNS before 0.60, a Perl module, allows remote attackers to cause a denial of service (stack consumption) via a malformed compressed DNS packet with self-referencing pointers, which triggers an infinite loop.
Affected products
5cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
25- www.debian.org/security/2008/dsa-1515nvdMailing ListThird Party Advisory
- www.gentoo.org/security/en/glsa/glsa-200708-06.xmlnvdThird Party Advisory
- www.mandriva.com/security/advisoriesnvdThird Party Advisory
- www.securityfocus.com/archive/1/473871/100/0/threadednvdBroken LinkThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/24669nvdBroken LinkThird Party AdvisoryVDB Entry
- www.securitytracker.com/idnvdBroken LinkThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/usn-483-1nvdThird Party Advisory
- patches.sgi.com/support/free/security/advisories/20070701-01-P.ascnvdBroken Link
- osvdb.org/37054nvdBroken Link
- rt.cpan.org/Public/Bug/Display.htmlnvdBroken Link
- secunia.com/advisories/25829nvdBroken Link
- secunia.com/advisories/26012nvdBroken Link
- secunia.com/advisories/26014nvdBroken Link
- secunia.com/advisories/26055nvdBroken Link
- secunia.com/advisories/26075nvdBroken Link
- secunia.com/advisories/26211nvdBroken Link
- secunia.com/advisories/26231nvdBroken Link
- secunia.com/advisories/26417nvdBroken Link
- secunia.com/advisories/26543nvdBroken Link
- secunia.com/advisories/29354nvdBroken Link
- www.net-dns.org/docs/Changes.htmlnvdRelease Notes
- www.novell.com/linux/security/advisories/2007_17_sr.htmlnvdBroken Link
- www.redhat.com/support/errata/RHSA-2007-0674.htmlnvdBroken Link
- www.trustix.org/errata/2007/0023/nvdBroken Link
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10595nvdBroken Link
News mentions
0No linked articles in our index yet.