Vulnerability in Nlnetlabs Unbound
CVE-2011-1922
daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DNS request t…
EPSS: 0.012 (79.4th percentile) — read the EPSS interpretation.
Affected products
- Nlnetlabs Unbound — versions 1.0.0, 1.0.1, 1.0.2
- N/a — versions n/a
Weakness classification (CWE)
References
- FEDORA-2011-7555 (x_refsource_FEDORA, vendor-advisory)
- 47986 (vdb-entry, x_refsource_BID)
- 44865 (x_refsource_SECUNIA, third-party-advisory)
- 72750 (x_refsource_OSVDB, vdb-entry)
- VU#531342 (x_refsource_CERT-VN, US Government Resource, Patch, third-party-advisory)
- unbound-dns-dos(67645) (vdb-entry, x_refsource_XF)
- secalert@redhat.com (x_refsource_CONFIRM, Patch, Vendor Advisory)