PowerDNS Authoritative Server 代码注入漏洞

The PowerDNS Authoritative Server is a DNS server developed by the Dutch company PowerDNS. There is a code injection vulnerability in the PowerDNS Authoritative Server. This vulnerability allows attackers to send notification requests, resulting in new auxiliary domains being added to the bind...

PowerDNS Authoritative Server 输入验证错误漏洞

The PowerDNS Authoritative Server is a DNS server developed by the Dutch company PowerDNS. There is a vulnerability in input validation of the PowerDNS Authoritative Server. This vulnerability arises from operations conducted by administrators who are allowed to use the REST API. Such actions may...

VulnCheck KEV: CVE-2021-36754

PowerDNS Authoritative Server 4.5.0 before 4.5.1 allows anybody to crash the process by sending a specific query QTYPE 65535 that causes an out-of-bounds exception...

SUSE CVE-2008-3337

PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products running on other servers, a different issue than CVE-2008-1447 and CVE-2008-3217...

SUSE CVE-2015-5311

PowerDNS aka pdns Authoritative Server 3.4.4 before 3.4.7 allows remote attackers to cause a denial of service assertion failure and server crash via crafted query packets...

SUSE CVE-2015-5470

The label decompression functionality in PowerDNS Recursor before 3.6.4 and 3.7.x before 3.7.3 and Authoritative Auth Server before 3.3.3 and 3.4.x before 3.4.5 allows remote attackers to cause a denial of service CPU consumption or crash via a request with a long name that refers to itself. NOTE...

SUSE CVE-2016-2120

An issue has been found in PowerDNS Authoritative Server versions up to and including 3.4.10, 4.0.1 allowing an authorized user to crash the server by inserting a specially crafted record in a zone under their control then sending a DNS query for that record. The issue is due to an integer overfl...

SUSE CVE-2021-36754

PowerDNS Authoritative Server 4.5.0 before 4.5.1 allows anybody to crash the process by sending a specific query QTYPE 65535 that causes an out-of-bounds exception...

PT-2021-21338

Name of the Vulnerable Software and Affected Versions PowerDNS Authoritative Server versions 4.5.0 through 4.5.0 Description The issue allows anybody to crash the process by sending a specific query QTYPE 65535 that causes an out-of-bounds exception. Recommendations For PowerDNS Authoritative...

DEBIAN-CVE-2020-17482

An issue has been found in PowerDNS Authoritative Server before 4.3.1 where an authorized user with the ability to insert crafted records into a zone might be able to leak the content of uninitialized memory...

PT-2020-15021 · Powerdns +4 · Powerdns Authoritative Server +4

Name of the Vulnerable Software and Affected Versions: PowerDNS Authoritative Server versions prior to 4.3.1 Description: An issue has been found where an authorized user with the ability to insert crafted records into a zone might be able to leak the content of uninitialized memory...

DEBIAN-CVE-2019-10162

A vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.10, 4.0.8 allowing an authorized user to cause the server to exit by inserting a crafted record in a MASTER type zone under their control. The issue is due to the fact that the Authoritative Server will exit when ...

UBUNTU-CVE-2019-10163

A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master server to cause a high CPU load or even prevent any further updates to any slave zone by sending a large number of NOTIFY messages. Note that only servers configured a...

DEBIAN-CVE-2019-3871

A vulnerability was found in PowerDNS Authoritative Server before 4.0.7 and before 4.1.7. An insufficient validation of data coming from the user when building a HTTP request from a DNS query in the HTTP Connector of the Remote backend, allowing a remote user to cause a denial of service by makin...

UBUNTU-CVE-2016-7072

An issue has been found in PowerDNS Authoritative Server before 3.4.11 and 4.0.2 allowing a remote, unauthenticated attacker to cause a denial of service by opening a large number of TCP connections to the web server. If the web server runs out of file descriptors, it triggers an exception and...

UBUNTU-CVE-2016-5426

PowerDNS aka pdns Authoritative Server before 3.4.10 allows remote attackers to cause a denial of service backend CPU consumption via a long qname...

PowerDNS Authoritative Server Packet Resolution Error Vulnerability

PowerDNS Authoritative Server provides DNS-related products and services. PowerDNS Authoritative Server versions 3.4.4-3.4.7 fail to properly process carefully constructed query packets and contain a packet parsing security vulnerability that can be exploited by remote attackers to cause a denial...

DEBIAN-CVE-2015-5311

PowerDNS aka pdns Authoritative Server 3.4.4 before 3.4.7 allows remote attackers to cause a denial of service assertion failure and server crash via crafted query packets...

PowerDNS Recursor and Authoritative Server Denial of Service Vulnerabilities

PowerDNS Recursor, Authoritative Server are both products of the Dutch company PowerDNS.PowerDNS Recursor is a domain name resolution server.PowerDNS Authoritative Server is a DNS server. A security vulnerability exists in the label decompression feature of PowerDNS Recursor and Authoritative...

PowerDNS Authoritative Server Message Handling Target Service Crash Vulnerability

PowerDNS Authoritative Server is a high performance authoritative DNS name server. A security vulnerability in the PowerDNS Authoritative Server DNS resolution code allows remote attackers to exploit the vulnerability to send special DNS messages that can crash the target service...