Computer Security
[EN] securityvulns.ru no-pyccku


PowerDNS multiple security DNS
Published:22.12.2008
Source:
SecurityVulns ID:9535
Type:remote
Threat Level:
5/10
Description:DoS, non-standard reaction to invalid query increases chances for successful spoofing attack.
Affected:POWERDNS : PowerDNS 2.9
CVE:CVE-2008-5277 (PowerDNS before 2.9.21.2 allows remote attackers to cause a denial of service (daemon crash) via a CH HINFO query.)
 CVE-2008-3337 (PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products running on other servers, a different issue than CVE-2008-1447 and CVE-2008-3217.)
Original documentdocumentGENTOO, [ GLSA 200812-19 ] PowerDNS: Multiple vulnerabilities (22.12.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod