Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3337

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2008-3337
Last Modified 07 Mar 2011 10:10:37
Published 08 Aug 2008 03:41:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3337

Summary

PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products running on other servers, a different issue than CVE-2008-1447 and CVE-2008-3217.

Vulnerable Systems

Application

  • Powerdns

  • Powerdns Authoritative Server 2.9.21


References

MLIST - [pdns-users] 20080806 Security update: PowerDNS Authoritative Server 2.9.21.1 released

FEDORA - FEDORA-2008-7083

FEDORA - FEDORA-2008-7048

XF - powerdns-query-weak-security(44253)

VUPEN - ADV-2008-2320

BID - 30587

GENTOO - GLSA-200812-19

SECUNIA - 33264

SECUNIA - 31687

SECUNIA - 31448

SECUNIA - 31407

SECUNIA - 31401

SUSE - SUSE-SR:2008:017

DEBIAN - DSA-1628

CONFIRM - http://doc.powerdns.com/powerdns-advisory-2008-02.html

CONFIRM - http://doc.powerdns.com/changelog.html


Last Updated: 27 May 2016 10:48:10