7.5

CVE-2006-4251

Buffer overflow in PowerDNS Recursor 3.1.3 and earlier might allow remote attackers to execute arbitrary code via a malformed TCP DNS query that prevents Recursor from properly calculating the TCP DNS query length.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
PowerdnsRecursor Version <= 3.1.3
PowerdnsRecursor Version2.0_rc1
PowerdnsRecursor Version2.8
PowerdnsRecursor Version2.9.15
PowerdnsRecursor Version2.9.16
PowerdnsRecursor Version2.9.17
PowerdnsRecursor Version2.9.18
PowerdnsRecursor Version3.0
PowerdnsRecursor Version3.0.1
PowerdnsRecursor Version3.1
PowerdnsRecursor Version3.1.1
PowerdnsRecursor Version3.1.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 8.44% 0.943
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://doc.powerdns.com/powerdns-advisory-2006-01.html
Patch
Vendor Advisory
http://lists.suse.com/archive/suse-security-announce/2006-Nov/0007.html
http://secunia.com/advisories/22824
Patch
Vendor Advisory
http://secunia.com/advisories/22903
http://secunia.com/advisories/22976
http://www.debian.org/security/2006/dsa-1211
http://www.securityfocus.com/bid/21037
Patch
http://www.vupen.com/english/advisories/2006/4484
https://exchange.xforce.ibmcloud.com/vulnerabilities/30270