[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-4424-1 pdns -- pdns

ID: oval:org.secpod.oval:def:54390Date: (C)2019-04-22   (M)2022-12-01
Class: PATCHFamily: unix




Adam Dobrawy, Frederico Silva and Gregory Brzeski from HyperOne.com discovered that pdns, an authoritative DNS server, did not properly validate user-supplied data when building a HTTP request from a DNS query in the HTTP Connector of the Remote backend. This would allow a remote user to cause either a denial-of-service, or information disclosure.

Platform:
Linux Mint 3
Product:
pdns-server
Reference:
DSA-4424-1
CVE-2019-3871
CVE    1
CVE-2019-3871
CPE    2
cpe:/a:powerdns:pdns-server
cpe:/o:linux_mint:linux_mint:3

© SecPod Technologies