Computer Associates Information for VU#738331
Domain Name System (DNS) resolver libraries vulnerable to read buffer overflow
- Vendor Information Help Date Notified: 15 Aug 2002
- Statement Date:
- Date Updated: 01 Oct 2002
We do not ship a resolver implementation or utilize the resolver library calls (i.e., res_*) but do utilize other native calls (e.g., gethostbyname(), gethostbyaddr() etc.) for translations.
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.