Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5277

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-5277
Last Modified 20 Aug 2009 01:23:05
Published 08 Dec 2008 07:30:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-5277

Summary

PowerDNS before 2.9.21.2 allows remote attackers to cause a denial of service (daemon crash) via a CH HINFO query.

Vulnerable Systems

Application

  • Powerdns 1.99.1

  • Powerdns 1.99.10

  • Powerdns 1.99.11

  • Powerdns 1.99.12

  • Powerdns 1.99.2

  • Powerdns 1.99.3

  • Powerdns 1.99.4

  • Powerdns 1.99.5

  • Powerdns 1.99.6

  • Powerdns 1.99.7

  • Powerdns 1.99.8

  • Powerdns 1.99.9

  • Powerdns 2.0

  • Powerdns 2.0.1

  • Powerdns 2.1

  • Powerdns 2.2

  • Powerdns 2.3

  • Powerdns 2.4

  • Powerdns 2.5

  • Powerdns 2.5.1

  • Powerdns 2.6

  • Powerdns 2.8

  • Powerdns 2.9.0

  • Powerdns 2.9.1

  • Powerdns 2.9.10

  • Powerdns 2.9.11

  • Powerdns 2.9.12

  • Powerdns 2.9.13

  • Powerdns 2.9.14

  • Powerdns 2.9.15

  • Powerdns 2.9.16

  • Powerdns 2.9.17

  • Powerdns 2.9.2

  • Powerdns 2.9.21.1

  • Powerdns 2.9.3a

  • Powerdns 2.9.4

  • Powerdns 2.9.5

  • Powerdns 2.9.6

  • Powerdns 2.9.7

  • Powerdns 2.9.8


References

XF - powerdns-chhinfo-dos(47076)

BID - 32627

SECTRACK - 1021304

GENTOO - GLSA-200812-19

SECUNIA - 33264

SECUNIA - 32979

SUSE - SUSE-SR:2008:027

CONFIRM - http://doc.powerdns.com/powerdns-advisory-2008-03.html


Last Updated: 27 May 2016 10:48:46