7 matches found
PowerDNS Recursor 3.x < 3.1.4 Multiple Vulnerabilities
According to its self-reported version number, the version of the PowerDNS Recursor listening on the remote host is version 3.x prior to 3.1.4. It is, therefore, affected by multiple vulnerabilities : - A buffer overflow condition exists that allows a remote attacker, via a specially crafted TCP...
Debian Security Advisory DSA 1211-1 (pdns)
The remote host is missing an update to pdns announced via advisory DSA 1211-1. It was discovered that malformed TCP packets may lead to denial of service and possibly the execution of arbitrary code if the PowerDNS nameserver acts as a recursive nameserver. OpenVAS Vulnerability Test $Id:...
openSUSE 10 Security Update : pdns (pdns-2275)
Two security problems that have been found in PowerDNS are fixed by this update : CVE-2006-4251: The PowerDNS Recursor can be made to crash by sending malformed questions to it over TCP potentially executing code. CVE-2006-4252: Zero second CNAME TTLs can make PowerDNS exhaust allocated stack...
Debian DSA-1211-1 : pdns - buffer overflow
It was discovered that malformed TCP packets may lead to denial of service and possibly the execution of arbitrary code if the PowerDNS nameserver acts as a recursive nameserver. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
[SECURITY] [DSA 1211-1] New pdns packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1211-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 14th, 2006 http://www.debian.org/security/faq -...
CVE-2006-4251
Buffer overflow in PowerDNS Recursor 3.1.3 and earlier might allow remote attackers to execute arbitrary code via a malformed TCP DNS query that prevents Recursor from properly calculating the TCP DNS query length...
CVE-2006-4251
PowerDNS Recursor 3.1.3 and earlier are affected by CVE-2006-4251 due to a buffer overflow in handling TCP DNS queries, potentially allowing remote code execution. Mitigation observed in connected docs: upgrade to pdns-recursor 3.1.4 or later (e.g., Debian/DSA-1211-1 and SUSE/SUSES-SA:2006:070 de...