CVE-2008-5297

Buffer overflow in No-IP DUC 2.1.7 and earlier allows remote HTTP servers to execute arbitrary code via a crafted response to a DNS update request, related to a missing length check in the GetNextLine function.
Configurations

Configuration 1

cpe:2.3:a:vitalwerks:no-ip_duc:2.1:*:*:*:*:*:*:*
cpe:2.3:a:vitalwerks:no-ip_duc:2.1.5:*:*:*:*:*:*:*
cpe:2.3:a:vitalwerks:no-ip_duc:*:*:*:*:*:*:*:*
cpe:2.3:a:vitalwerks:no-ip_duc:2.0.3:*:*:*:*:*:*:*

Information

Published : 2008-12-01 03:30

Updated : 2017-09-29 01:32


NVD link : CVE-2008-5297

Mitre link : CVE-2008-5297

Products Affected
No products.
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer