Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:MISC:DYNDNSUPDATE

Severity

 Medium

Recommended

 No

Category

 HTTP

Keywords

 DynDnsUpdate Traffic

Release Date

 2005/04/19

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: DynDnsUpdate Traffic


This signature detects DynDnsUpdate, a DNS update tool. Because this software is currently unmaintained, it contains multiple known vulnerabilities. We strongly recommend that you seek alternate software solutions.

Extended Description

Multiple remote buffer overflow vulnerabilities affect Xzabite's dyndnsupdate. These issues are due to a failure of the application to properly validate the length of user-supplied strings prior to copying them into static process buffers. An attacker may exploit these issues to execute arbitrary code with the privileges of a user that activated the vulnerable application. This may facilitate unauthorized access or privilege escalation.

Affected Products

  • Xzabite dyndnsupdate

References

  • BugTraq: 12858
  • CVE: CVE-2005-0830
  • URL: http://www.gentoo.org/security/en/glsa/glsa-200503-27.xml

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out