CVE-2007-3115 | Vulnerability Database | Aqua Security

Multiple memory leaks in server/MaraDNS.c in MaraDNS before 1.2.12.06, and 1.3.x before 1.3.05, allow remote attackers to cause a denial of service (memory consumption) via (1) reverse lookups or (2) requests for records in a class other than Internet (IN), a different set of affected versions than CVE-2007-3114 and CVE-2007-3116.

Affected Software

Name	Vendor	Start Version	End Version
Maradns	Maradns	1.2.12.01 (including)	1.2.12.01 (including)
Maradns	Maradns	1.2.12.02 (including)	1.2.12.02 (including)
Maradns	Maradns	1.2.12.03 (including)	1.2.12.03 (including)
Maradns	Maradns	1.2.12.04 (including)	1.2.12.04 (including)
Maradns	Maradns	1.2.12.05 (including)	1.2.12.05 (including)
Maradns	Maradns	1.3.01 (including)	1.3.01 (including)
Maradns	Maradns	1.3.02 (including)	1.3.02 (including)
Maradns	Maradns	1.3.03 (including)	1.3.03 (including)
Maradns	Maradns	1.3.04 (including)	1.3.04 (including)
Maradns	Ubuntu	dapper	*
Maradns	Ubuntu	edgy	*
Maradns	Ubuntu	feisty	*

References

http://osvdb.org/37017
http://secunia.com/advisories/25406
http://secunia.com/advisories/25767
http://superb-west.dl.sourceforge.net/sourceforge/maradns/maradns-1.2.12.06.tar.gz
http://www.debian.org/security/2007/dsa-1319
http://www.maradns.org/changelog.html
http://www.securityfocus.com/archive/1/471725/100/0/threaded
http://www.securityfocus.com/bid/24337
http://www.securitytracker.com/id?1018201
http://www.vupen.com/english/advisories/2007/2263
http://osvdb.org/37017
http://secunia.com/advisories/25406
http://secunia.com/advisories/25767
http://superb-west.dl.sourceforge.net/sourceforge/maradns/maradns-1.2.12.06.tar.gz
http://www.debian.org/security/2007/dsa-1319
http://www.maradns.org/changelog.html
http://www.securityfocus.com/archive/1/471725/100/0/threaded
http://www.securityfocus.com/bid/24337
http://www.securitytracker.com/id?1018201
http://www.vupen.com/english/advisories/2007/2263

NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-3115
CWE	https://cwe.mitre.org/data/definitions/399.html