CVE Tools

maradns

Networking Infrastructureoss-project

11

Cumulative CVEs

7

Monthly snapshots

#30

Peak rank

Top products

Latest CVEs

The 15 most recently published vulnerabilities affecting maradns.

CVE-2026-40719Deadwood in MaraDNS 3.5.0036 allows attackers to exhaust connection slots via a zone whose authoritative nameserver address cannot be resolved.7.5Apr 15, 2026
CVE-2023-31137MaraDNS Integer Underflow Vulnerability in DNS Packet Decompression7.5May 9, 2023
CVE-2022-30256An issue was discovered in MaraDNS Deadwood through 3.5.0021 that allows variant V1 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including ex...7.5Nov 18, 2022
CVE-2012-1570The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows ...4.3Mar 28, 2012
CVE-2012-0024MaraDNS before 1.3.07.12 and 1.4.x before 1.4.08 computes hash values for DNS data without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a d...7.8Jan 8, 2012
CVE-2011-5056The authoritative server in MaraDNS through 2.0.04 computes hash values for DNS data without restricting the ability to trigger hash collisions predictably, which might allow local users to cause a...2.1Jan 8, 2012
CVE-2011-5055MaraDNS 1.3.07.12 and 1.4.08 computes hash values for DNS data without properly restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of se...5.0Jan 8, 2012
CVE-2011-0520The compress_add_dlabel_points function in dns/Compress.c in MaraDNS 1.4.03, 1.4.05, and probably other versions allows remote attackers to cause a denial of service (segmentation fault) and possib...7.5Jan 28, 2011
CVE-2010-2444parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions before 1.4.03, does not properly handle hostnames that do not end in a "." (dot) character, which allows remote attackers to cause a denial ...4.3Jun 25, 2010
CVE-2008-0061MaraDNS 1.0 before 1.0.41, 1.2 before 1.2.12.08, and 1.3 before 1.3.07.04 allows remote attackers to cause a denial of service via a crafted DNS packet that prevents an authoritative name (CNAME) r...5.0Jan 3, 2008
CVE-2007-3116Memory leak in server/MaraDNS.c in MaraDNS 1.2.12.06 and 1.3.05 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors, a different set of affected versio...5.0Jun 7, 2007
CVE-2007-3115Multiple memory leaks in server/MaraDNS.c in MaraDNS before 1.2.12.06, and 1.3.x before 1.3.05, allow remote attackers to cause a denial of service (memory consumption) via (1) reverse lookups or (...7.8Jun 7, 2007
CVE-2007-3114Memory leak in server/MaraDNS.c in MaraDNS before 1.2.12.05, and 1.3.x before 1.3.03, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors, a different ...5.0Jun 7, 2007
CVE-2004-0789Multiple implementations of the DNS protocol, including (1) Poslib 1.0.2-1 and earlier as used by Posadis, (2) Axis Network products before firmware 3.13, and (3) Men & Mice Suite 2.2x before 2.2.3...5.0Sep 1, 2005
CVE-2002-2097The compression code in MaraDNS before 0.9.01 allows remote attackers to cause a denial of service via crafted DNS packets.5.0Aug 5, 2005