CVE-2007-1030

Niels Provos libevent 1.2 and 1.2a allows remote attackers to cause a denial of service (infinite loop) via a DNS response containing a label pointer that references its own offset.

Published: Feb 21, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-1030
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
niels_provos / libevent	1.2a	1.2a.x
niels_provos / libevent	1.2	1.2.x

http://monkey.org/~provos/libevent/
http://osvdb.org/33228
http://secunia.com/advisories/24181
http://securityreason.com/securityalert/2268
http://www.securityfocus.com/archive/1/460530/100/0/threaded
http://www.securityfocus.com/bid/22606
http://www.vupen.com/english/advisories/2007/0647

Vulnerability Database

289,784

CVE-2007-1030