Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2014-8601
HistoryDec 10, 2014 - 3:59 p.m.

CVE-2014-8601

2014-12-1015:59:00
Debian Security Bug Tracker
security-tracker.debian.org
14

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.123 Low

EPSS

Percentile

95.3%

PowerDNS Recursor before 3.6.2 does not limit delegation chaining, which allows remote attackers to cause a denial of service (“performance degradations”) via a large or infinite number of referrals, as demonstrated by resolving domains hosted by ezdns.it.

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.123 Low

EPSS

Percentile

95.3%