PowerDNS Authoritative Server Remote Denial Of Service Vulnerability Network Vulnerability

Summary

PowerDNS is prone to a remote denial-of-service vulnerability. Successfully exploiting this issue will allow attackers to cause the application to fall into an endless packet loop with other DNS servers, denying service to legitimate users.

Solution

The vendor has released a patch. Please see the references for details.

References

http://mailman.powerdns.com/pipermail/pdns-users/2012-January/008457.html
http://wiki.powerdns.com/trac/changeset/2331
http://www.powerdns.com/
http://www.securityfocus.com/bid/51355

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-0206
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Active Perl CGI.pm 'Set-Cookie' and 'P3P' HTTP Header Injection Vulnerability (Win)
Arora Common Name SSL Certificate Spoofing Vulnerability (Linux)
APC PowerChute Business Edition Unspecified Cross Site Scripting Vulnerability
Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability (Win)
Apple Safari Multiple Memory Corruption Vulnerabilities-02 Apr14 (Mac OS X)

PowerDNS Authoritative Server Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities