mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 09:12:08 +00:00
830 B
830 B
CVE-2019-25040
Description
** DISPUTED ** Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited.
POC
Reference
- https://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/
- https://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/
Github
No PoCs found on GitHub currently.