CVE-2004-0789
Summary
| CVE | CVE-2004-0789 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2004-12-31 05:00:00 UTC |
| Updated | 2017-07-11 01:30:00 UTC |
| Description | Multiple implementations of the DNS protocol, including (1) Poslib 1.0.2-1 and earlier as used by Posadis, (2) Axis Network products before firmware 3.13, and (3) Men & Mice Suite 2.2x before 2.2.3 and 3.5.x before 3.5.2, allow remote attackers to cause a denial of service (CPU and network bandwidth consumption) by triggering a communications loop via (a) DNS query packets with localhost as a spoofed source address, or (b) a response packet that triggers a response packet. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Axis | 2100 Network Camera | 2.0 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.01 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.02 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.03 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.12 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.30 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.31 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.32 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.33 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.34 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.40 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.41 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.0 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.01 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.02 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.03 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.12 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.30 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.31 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.32 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.33 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.34 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.40 | All | All | All |
| Hardware | Axis | 2100 Network Camera | 2.41 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.12 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.30 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.31 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.32 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.34 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.40 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.41 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.12 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.30 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.31 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.32 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.34 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.40 | All | All | All |
| Hardware | Axis | 2110 Network Camera | 2.41 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.12 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.30 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.31 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.32 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.34 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.40 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.41 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.12 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.30 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.31 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.32 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.34 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.40 | All | All | All |
| Hardware | Axis | 2120 Network Camera | 2.41 | All | All | All |
| Hardware | Axis | 2400 Video Server | 3.11 | All | All | All |
| Hardware | Axis | 2400 Video Server | 3.12 | All | All | All |
| Hardware | Axis | 2400 Video Server | 3.11 | All | All | All |
| Hardware | Axis | 2400 Video Server | 3.12 | All | All | All |
| Hardware | Axis | 2401 Video Server | 3.12 | All | All | All |
| Hardware | Axis | 2401 Video Server | 3.12 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.12 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.30 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.31 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.32 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.33 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.34 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.40 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.41 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.12 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.30 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.31 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.32 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.33 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.34 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.40 | All | All | All |
| Hardware | Axis | 2420 Network Camera | 2.41 | All | All | All |
| Hardware | Axis | 2460 Network Dvr | 3.12 | All | All | All |
| Hardware | Axis | 2460 Network Dvr | 3.12 | All | All | All |
| Application | Delegate | Delegate | 7.7.0 | All | All | All |
| Application | Delegate | Delegate | 7.7.1 | All | All | All |
| Application | Delegate | Delegate | 7.8.0 | All | All | All |
| Application | Delegate | Delegate | 7.8.1 | All | All | All |
| Application | Delegate | Delegate | 7.8.2 | All | All | All |
| Application | Delegate | Delegate | 7.9.11 | All | All | All |
| Application | Delegate | Delegate | 8.3.3 | All | All | All |
| Application | Delegate | Delegate | 8.3.4 | All | All | All |
| Application | Delegate | Delegate | 8.4.0 | All | All | All |
| Application | Delegate | Delegate | 8.5.0 | All | All | All |
| Application | Delegate | Delegate | 8.9 | All | All | All |
| Application | Delegate | Delegate | 8.9.1 | All | All | All |
| Application | Delegate | Delegate | 8.9.2 | All | All | All |
| Application | Delegate | Delegate | 8.9.3 | All | All | All |
| Application | Delegate | Delegate | 8.9.4 | All | All | All |
| Application | Delegate | Delegate | 8.9.5 | All | All | All |
| Application | Delegate | Delegate | 7.7.0 | All | All | All |
| Application | Delegate | Delegate | 7.7.1 | All | All | All |
| Application | Delegate | Delegate | 7.8.0 | All | All | All |
| Application | Delegate | Delegate | 7.8.1 | All | All | All |
| Application | Delegate | Delegate | 7.8.2 | All | All | All |
| Application | Delegate | Delegate | 7.9.11 | All | All | All |
| Application | Delegate | Delegate | 8.3.3 | All | All | All |
| Application | Delegate | Delegate | 8.3.4 | All | All | All |
| Application | Delegate | Delegate | 8.4.0 | All | All | All |
| Application | Delegate | Delegate | 8.5.0 | All | All | All |
| Application | Delegate | Delegate | 8.9 | All | All | All |
| Application | Delegate | Delegate | 8.9.1 | All | All | All |
| Application | Delegate | Delegate | 8.9.2 | All | All | All |
| Application | Delegate | Delegate | 8.9.3 | All | All | All |
| Application | Delegate | Delegate | 8.9.4 | All | All | All |
| Application | Delegate | Delegate | 8.9.5 | All | All | All |
| Application | Dnrd | Dnrd | 1.0 | All | All | All |
| Application | Dnrd | Dnrd | 1.1 | All | All | All |
| Application | Dnrd | Dnrd | 1.2 | All | All | All |
| Application | Dnrd | Dnrd | 1.3 | All | All | All |
| Application | Dnrd | Dnrd | 1.4 | All | All | All |
| Application | Dnrd | Dnrd | 2.0 | All | All | All |
| Application | Dnrd | Dnrd | 2.1 | All | All | All |
| Application | Dnrd | Dnrd | 2.10 | All | All | All |
| Application | Dnrd | Dnrd | 2.2 | All | All | All |
| Application | Dnrd | Dnrd | 2.3 | All | All | All |
| Application | Dnrd | Dnrd | 2.4 | All | All | All |
| Application | Dnrd | Dnrd | 2.5 | All | All | All |
| Application | Dnrd | Dnrd | 2.6 | All | All | All |
| Application | Dnrd | Dnrd | 2.7 | All | All | All |
| Application | Dnrd | Dnrd | 2.8 | All | All | All |
| Application | Dnrd | Dnrd | 2.9 | All | All | All |
| Application | Dnrd | Dnrd | 1.0 | All | All | All |
| Application | Dnrd | Dnrd | 1.1 | All | All | All |
| Application | Dnrd | Dnrd | 1.2 | All | All | All |
| Application | Dnrd | Dnrd | 1.3 | All | All | All |
| Application | Dnrd | Dnrd | 1.4 | All | All | All |
| Application | Dnrd | Dnrd | 2.0 | All | All | All |
| Application | Dnrd | Dnrd | 2.1 | All | All | All |
| Application | Dnrd | Dnrd | 2.10 | All | All | All |
| Application | Dnrd | Dnrd | 2.2 | All | All | All |
| Application | Dnrd | Dnrd | 2.3 | All | All | All |
| Application | Dnrd | Dnrd | 2.4 | All | All | All |
| Application | Dnrd | Dnrd | 2.5 | All | All | All |
| Application | Dnrd | Dnrd | 2.6 | All | All | All |
| Application | Dnrd | Dnrd | 2.7 | All | All | All |
| Application | Dnrd | Dnrd | 2.8 | All | All | All |
| Application | Dnrd | Dnrd | 2.9 | All | All | All |
| Application | Don Moore | Mydns | 0.10.0 | All | All | All |
| Application | Don Moore | Mydns | 0.6 | All | All | All |
| Application | Don Moore | Mydns | 0.7 | All | All | All |
| Application | Don Moore | Mydns | 0.8 | All | All | All |
| Application | Don Moore | Mydns | 0.9 | All | All | All |
| Application | Don Moore | Mydns | 0.10.0 | All | All | All |
| Application | Don Moore | Mydns | 0.6 | All | All | All |
| Application | Don Moore | Mydns | 0.7 | All | All | All |
| Application | Don Moore | Mydns | 0.8 | All | All | All |
| Application | Don Moore | Mydns | 0.9 | All | All | All |
| Application | Maradns | Maradns | 0.5.28 | All | All | All |
| Application | Maradns | Maradns | 0.5.29 | All | All | All |
| Application | Maradns | Maradns | 0.5.30 | All | All | All |
| Application | Maradns | Maradns | 0.5.31 | All | All | All |
| Application | Maradns | Maradns | 0.8.05 | All | All | All |
| Application | Maradns | Maradns | 0.5.28 | All | All | All |
| Application | Maradns | Maradns | 0.5.29 | All | All | All |
| Application | Maradns | Maradns | 0.5.30 | All | All | All |
| Application | Maradns | Maradns | 0.5.31 | All | All | All |
| Application | Maradns | Maradns | 0.8.05 | All | All | All |
| Application | Pliant | Pliant Dns Server | All | All | All | All |
| Application | Pliant | Pliant Dns Server | All | All | All | All |
| Application | Posadis | Posadis | 0.50.4 | All | All | All |
| Application | Posadis | Posadis | 0.50.5 | All | All | All |
| Application | Posadis | Posadis | 0.50.6 | All | All | All |
| Application | Posadis | Posadis | 0.50.7 | All | All | All |
| Application | Posadis | Posadis | 0.50.8 | All | All | All |
| Application | Posadis | Posadis | 0.50.9 | All | All | All |
| Application | Posadis | Posadis | 0.60.0 | All | All | All |
| Application | Posadis | Posadis | 0.60.1 | All | All | All |
| Application | Posadis | Posadis | m5pre1 | All | All | All |
| Application | Posadis | Posadis | m5pre2 | All | All | All |
| Application | Posadis | Posadis | 0.50.4 | All | All | All |
| Application | Posadis | Posadis | 0.50.5 | All | All | All |
| Application | Posadis | Posadis | 0.50.6 | All | All | All |
| Application | Posadis | Posadis | 0.50.7 | All | All | All |
| Application | Posadis | Posadis | 0.50.8 | All | All | All |
| Application | Posadis | Posadis | 0.50.9 | All | All | All |
| Application | Posadis | Posadis | 0.60.0 | All | All | All |
| Application | Posadis | Posadis | 0.60.1 | All | All | All |
| Application | Posadis | Posadis | m5pre1 | All | All | All |
| Application | Posadis | Posadis | m5pre2 | All | All | All |
| Application | Qbik | Wingate | 3.0 | All | All | All |
| Application | Qbik | Wingate | 4.0.1 | All | All | All |
| Application | Qbik | Wingate | 4.1_beta_a | All | All | All |
| Application | Qbik | Wingate | 6.0 | All | All | All |
| Application | Qbik | Wingate | 6.0.1_build_993 | All | All | All |
| Application | Qbik | Wingate | 6.0.1_build_995 | All | All | All |
| Application | Qbik | Wingate | 3.0 | All | All | All |
| Application | Qbik | Wingate | 4.0.1 | All | All | All |
| Application | Qbik | Wingate | 4.1_beta_a | All | All | All |
| Application | Qbik | Wingate | 6.0 | All | All | All |
| Application | Qbik | Wingate | 6.0.1_build_993 | All | All | All |
| Application | Qbik | Wingate | 6.0.1_build_995 | All | All | All |
| Application | Team Johnlong | Raidendnsd | All | All | All | All |
| Application | Team Johnlong | Raidendnsd | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Secunia - Advisories - Axis Products DNS Implementation Denial of Service Vulnerability | SECUNIA | secunia.com | Patch |
| www.niscc.gov.uk/niscc/docs/re-20041109-00957.pdf | MISC | www.niscc.gov.uk | Vendor Advisory |
| www.niscc.gov.uk/niscc/docs/al-20041130-00862.html | MISC | www.niscc.gov.uk | Vendor Advisory |
| SecurityTracker.com Archives - Axis Network Camera DNS Loopback Error Lets Remote Users Deny Service | SECTRACK | securitytracker.com | Patch |
| 404 Not Found | CONFIRM | www.posadis.org | Patch, Vendor Advisory |
| Multiple Vendor DNS Response Flooding Denial Of Service Vulnerability | BID | www.securityfocus.com | Patch |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.