CVE-2008-2469

Heap-based buffer overflow in the SPF_dns_resolv_lookup function in Spf_dns_resolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field.
Configurations

Configuration 1

cpe:2.3:a:libspf:libspf2:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:libspf:libspf2:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:libspf:libspf2:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:libspf:libspf2:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:libspf:libspf2:*:*:*:*:*:*:*:*
cpe:2.3:a:libspf:libspf2:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:libspf:libspf2:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:libspf:libspf2:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:libspf:libspf2:1.0.3:*:*:*:*:*:*:*

Information

Published : 2008-10-23 10:00

Updated : 2017-09-29 01:31


NVD link : CVE-2008-2469

Mitre link : CVE-2008-2469

Products Affected
No products.
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer