Dnstracer-1.9-Fix

dnstracer

dnstracer determines where a given Domain Name Server (DNS) gets its information from for a given hostname, and follows the chain of DNS servers back to the authoritative answer.

Problem

Stack-based buffer overflow in dnstracer through 1.9 allows attackers to execute arbitrary code via a command line with a long name argument that is mishandled in a strcpy call for argv[0].

/*dnstracer_broken.h*/
#define NS_MAXDNAME	1024

/*dnstracer.c*/
strcpy(argv0, argv[0]);

Fix

Check if argv[0] length is longer than 1024.

/*CVE-2017-9430 Fix*/
if(strlen(argv[0]) >= NS_MAXDNAME)
{
    free(server_ip);
    free(server_name);
    fprintf(stderr, "dnstracer: argument is too long %s\n", argv[0]);
    return 1;
}

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
autom4te.cache		autom4te.cache
CHANGES		CHANGES
CONTACT		CONTACT
FILES		FILES
LICENSE		LICENSE
MSVC.BAT		MSVC.BAT
Makefile.am		Makefile.am
Makefile.in		Makefile.in
README		README
README.md		README.md
aclocal.m4		aclocal.m4
autoscan.log		autoscan.log
config.guess		config.guess
config.h.in		config.h.in
config.sub		config.sub
configure		configure
configure.in		configure.in
configure.scan		configure.scan
depcomp		depcomp
dnstracer.8		dnstracer.8
dnstracer.c		dnstracer.c
dnstracer.pod		dnstracer.pod
dnstracer.spec		dnstracer.spec
dnstracer_broken.h		dnstracer_broken.h
getopt.c		getopt.c
getopt.h		getopt.h
install-sh		install-sh
missing		missing
mkinstalldirs		mkinstalldirs
stamp-h		stamp-h
stamp-h.in		stamp-h.in

License

j0lama/Dnstracer-1.9-Fix

Folders and files

Latest commit

History

Repository files navigation

Dnstracer-1.9-Fix

dnstracer

Problem

Fix

About

Resources

License

Stars

Watchers

Forks

Languages