Community Forum

DnsMasq heap buffer overflow vulnerability for Cisco voice and data modem DPC3941T

New Poster

DnsMasq heap buffer overflow vulnerability for Cisco voice and data modem DPC3941T

 

    Avast anti virus told me that my voice and data modem, Cisco DPC3941T, has a vunerability. DnsMasq heap buffer overflow vunerability. The fix is Version2.78, Catalogue ID  CVE-2017-14491. Does anyone else know this and what did you do? Thank you for your answer.

New Poster

Re: DnsMasq heap buffer overflow vulnerability for Cisco voice and data modem DPC3941T

I got the same result.  Called tech support and they said this is a generic message that's not applicable to their devices, since they don't do anything with DNS on their devices.  Ie, according to the person I spoke with, this is not an actual vulnerability on this particular router.  I think that's likely correct, as when I login to the router, I can't find anywhere where there's any kind of DNS setting.  Hope that puts you at ease a bit.  :-)

Highlighted
Regular Visitor

Re: DnsMasq heap buffer overflow vulnerability for Cisco voice and data modem DPC3941T

That customer support explanation that DNS isn't used seems unreasonable to me.  DNS is the service used to let your computer figure out that google.com is at ip address 216.58.217.46.  We're using DNS when we run commands like the following, or when we type google.com in our browser's address bar.

 

C:\Users\jmtt>nslookup google.com
Server: cdns01.comcast.net
Address: 2001:558:feed::1

Non-authoritative answer:
Name: google.com
Addresses: 2607:f8b0:400a:808::200e
216.58.217.46