Summary
PowerDNS is prone to a remote denial-of-service vulnerability.
Successfully exploiting this issue will allow attackers to cause the application to fall into an endless packet loop with other DNS servers, denying service to legitimate users.
Solution
The vendor has released a patch. Please see the references for details.
References
Severity
Classification
-
CVE CVE-2012-0206 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Active Perl CGI.pm 'Set-Cookie' and 'P3P' HTTP Header Injection Vulnerability (Win)
- Arora Common Name SSL Certificate Spoofing Vulnerability (Linux)
- APC PowerChute Business Edition Unspecified Cross Site Scripting Vulnerability
- Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability (Win)
- Apple Safari Multiple Memory Corruption Vulnerabilities-02 Apr14 (Mac OS X)