CyberSec.Space Logo
Back to CVE Browser

CVE-2007-1465

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0310%
EPSS Percentile31.05th
PublishedMar 24, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Stack-based buffer overflow in dproxy.c for dproxy 0.1 through 0.5 allows remote attackers to execute arbitrary code via a long DNS query packet to UDP port 53.

Affected Platforms (CPE)

πŸ“¦
Dproxy

Dproxy

= 0.1
πŸ“¦
Dproxy

Dproxy

= 0.2
πŸ“¦
Dproxy

Dproxy

= 0.3
πŸ“¦
Dproxy

Dproxy

= 0.4
πŸ“¦
Dproxy

Dproxy

= 0.5

References & Advisories

πŸ”— http://osvdb.org/34449
πŸ”— http://seclists.org/fulldisclosure/2007/Mar/0409.html
πŸ”— http://secunia.com/advisories/24623
πŸ”— http://www.securityfocus.com/bid/23112
πŸ”— http://www.vupen.com/english/advisories/2007/1091
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/33171
πŸ”— https://www.cynops.de/advisories/CVE-2007-1465.txt
πŸ”— http://osvdb.org/34449

Related Vulnerabilities

CVE-2007-186610.0

Stack-based buffer overflow in the dns_decode_reverse_name function in dns_decode.c in dproxy-nexgen allows remote attackers to ex...

CVE-2007-350010.0

Xeweb XEForum allows remote attackers to gain privileges via a modified xeforum cookie.

CVE-2007-182210.0

Alcatel-Lucent Lucent Technologies voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailbo...

CVE-2007-023610.0

Double free vulnerability in the _ATPsndrsp function in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attacker...