Older version of the host command contains a remotely exploitable buffer overflow. The host command is used to perform the AXFR request to obtain the zone transfer information, and can be caused to execute arbitrary code when connecting to a fake DNS server, a netcat process listening on port 53.
39951d3f589829a119033d3606128b1ac7e7273f64901d487f9e72eb6efa1de7