Description

The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (invalid pointer dereference and worker process crash) via a crafted UDP DNS response.

Remediation

References

CVE-2016-0742

Related Vulnerabilities

WordPress Plugin Super Logos Showcase for WordPress Arbitrary File Upload (2.2)

WordPress Plugin WP SEO Tags Cross-Site Scripting (2.2.7)

WordPress Plugin Elementor Addon Elements Multiple Cross-Site Scripting Vulnerabilities (1.11.1)

WordPress Plugin ALO EasyMail Newsletter Cross-Site Request Forgery (2.9.2)

WordPress Plugin Featured Video Plus Unspecified Vulnerability (2.2.3)

Severity

High

Classification

CVE-2016-0742 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities