Buffer overflow in host command allows a remote attacker to execute arbitrary commands via a long response to an AXFR query.
Related posts