CVE-2016-2120 in Authoritative Serverinformación

Resumen

por MITRE

An issue has been found in PowerDNS Authoritative Server versions up to and including 3.4.10, 4.0.1 allowing an authorized user to crash the server by inserting a specially crafted record in a zone under their control then sending a DNS query for that record. The issue is due to an integer overflow when checking if the content of the record matches the expected size, allowing an attacker to cause a read past the buffer boundary.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservar

2016-01-28

Divulgación

2018-11-01

Moderación

aceptado

Artículo

VDB-126386

CPE

listo

EPSS

0.01997

KEV

no

Actividades

muy bajo

Fuentes

Want to know what is going to be exploited?

We predict KEV entries!