4 matches found
PowerDNS Recursor 3.x < 3.1.4 Multiple Vulnerabilities
According to its self-reported version number, the version of the PowerDNS Recursor listening on the remote host is version 3.x prior to 3.1.4. It is, therefore, affected by multiple vulnerabilities : - A buffer overflow condition exists that allows a remote attacker, via a specially crafted TCP...
openSUSE 10 Security Update : pdns (pdns-2275)
Two security problems that have been found in PowerDNS are fixed by this update : CVE-2006-4251: The PowerDNS Recursor can be made to crash by sending malformed questions to it over TCP potentially executing code. CVE-2006-4252: Zero second CNAME TTLs can make PowerDNS exhaust allocated stack...
CVE-2006-4252
PowerDNS Recursor 3.1.3 and earlier allows remote attackers to cause a denial of service resource exhaustion and application crash via a CNAME record with a zero TTL, which triggers an infinite loop...
CVE-2006-4252
PowerDNS Recursor (3.1.3 and earlier) is affected by CVE-2006-4252: processing a CNAME record with a zero TTL can trigger an infinite loop, causing resource exhaustion and an application crash (denial of service). Affected software is the PowerDNS Recursor; remediation is to upgrade to 3.1.4 or l...