3 matches found
PowerDNS Authoritative Server Multiple Vulnerabilities (2020-06)
PowerDNS Authoritative Server is prone to multiple vulnerabilities in the GSS-TSIG support. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
CVE-2020-24696
An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker can trigger a race condition leading to a crash, or possibly arbitrary code execution, by sending crafted queries with a GSS-TSIG signature...
CVE-2020-24696
PowerDNS Authoritative Server (up to 4.3.0) is affected via GSS-TSIG support. A remote, unauthenticated attacker can trigger a race condition by sending crafted queries with a GSS-TSIG signature, potentially causing a crash or arbitrary code execution. Impact is demonstrated as partial confidenti...