Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
powerdns pdns vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2018-1046
pdns before version 4.1.2 is vulnerable to a buffer overflow in dnsreplay. In the dnsreplay tool provided with PowerDNS Authoritative, replaying a specially crafted PCAP file can trigger a stack-based buffer overflow, leading to a crash and potentially arbitrary code execution. T...
Powerdns Pdns
NA
CVE-2005-2301
PowerDNS prior to 2.9.18, when running with an LDAP backend, does not properly escape LDAP queries, which allows remote malicious users to cause a denial of service (failure to answer ldap questions) and possibly conduct an LDAP injection attack.
Powerdns Powerdns 2.9.0
Powerdns Powerdns 2.9.1
Powerdns Powerdns 2.9.17
Powerdns Powerdns 2.9.2
Powerdns Powerdns 2.9.13
Powerdns Powerdns 2.9.14
Powerdns Powerdns 2.9.5
Powerdns Powerdns 2.9.6
Powerdns Powerdns 2.9.15
Powerdns Powerdns 2.9.16
Powerdns Powerdns 2.9.7
Powerdns Powerdns 2.9.8
Powerdns Powerdns 2.9.10
Powerdns Powerdns 2.9.11
Powerdns Powerdns 2.9.12
Powerdns Powerdns 2.9.3a
Powerdns Powerdns 2.9.4
NA
CVE-2005-2302
PowerDNS prior to 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that are denied recursion, which could cause a "blank out" of answers to those clients that are allowed to use recursion.
Powerdns Powerdns 2.9.0
Powerdns Powerdns 2.9.15
Powerdns Powerdns 2.9.16
Powerdns Powerdns 2.9.17
Powerdns Powerdns 2.9.8
Powerdns Powerdns 2.9.11
Powerdns Powerdns 2.9.12
Powerdns Powerdns 2.9.4
Powerdns Powerdns 2.9.5
Powerdns Powerdns 2.9.13
Powerdns Powerdns 2.9.14
Powerdns Powerdns 2.9.6
Powerdns Powerdns 2.9.7
Powerdns Powerdns 2.9.1
Powerdns Powerdns 2.9.10
Powerdns Powerdns 2.9.2
Powerdns Powerdns 2.9.3a
NA
CVE-2015-5470
The label decompression functionality in PowerDNS Recursor prior to 3.6.4 and 3.7.x prior to 3.7.3 and Authoritative (Auth) Server prior to 3.3.3 and 3.4.x prior to 3.4.5 allows remote malicious users to cause a denial of service (CPU consumption or crash) via a request with a lo...
Powerdns Authoritative
Powerdns Authoritative 3.4.1
Powerdns Authoritative 3.4.2
Powerdns Authoritative 3.4.3
Powerdns Authoritative 3.4.4
Powerdns Authoritative 3.4.0
Powerdns Recursor
Powerdns Recursor 3.7.2
Powerdns Recursor 3.7.1
NA
CVE-2015-1868
The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x prior to 3.6.3, and 3.7.x prior to 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x prior to 3.3.2, and 3.4.x prior to 3.4.4 allows remote malicious users to cause a denial of service (CPU consumption or cr...
Powerdns Authoritative 3.2
Powerdns Authoritative 3.3
Powerdns Authoritative 3.3.1
Powerdns Authoritative 3.3.2
Powerdns Authoritative 3.4.0
Powerdns Authoritative 3.4.1
Powerdns Authoritative 3.4.3
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Powerdns Recursor 3.5
Powerdns Recursor 3.6.0
Powerdns Recursor 3.6.1
Powerdns Recursor 3.6.2
Powerdns Recursor 3.5.3
Powerdns Recursor 3.6.3
Powerdns Recursor 3.7.1
Powerdns Recursor 3.5.2
Powerdns Recursor 3.5.1
NA
CVE-2006-4251
Buffer overflow in PowerDNS Recursor 3.1.3 and previous versions might allow remote malicious users to execute arbitrary code via a malformed TCP DNS query that prevents Recursor from properly calculating the TCP DNS query length.
Powerdns Recursor 3.0
Powerdns Recursor 3.0.1
Powerdns Recursor 2.9.15
Powerdns Recursor 2.9.16
Powerdns Recursor 3.1.2
Powerdns Recursor
Powerdns Recursor 2.0 Rc1
Powerdns Recursor 2.8
Powerdns Recursor 3.1
Powerdns Recursor 3.1.1
Powerdns Recursor 2.9.17
Powerdns Recursor 2.9.18
NA
CVE-2008-3217
PowerDNS Recursor prior to 3.1.6 does not always use the strongest random number generator for source port selection, which makes it easier for remote attack vectors to conduct DNS cache poisoning. NOTE: this is related to incomplete integration of security improvements associate...
Powerdns Recursor 3.1.2
Powerdns Recursor 3.1.3
Powerdns Recursor 3.0.1
Powerdns Recursor 3.1.1
Powerdns Recursor 3.0
Powerdns Recursor 3.1.4
Powerdns Recursor
NA
CVE-2012-0206
common_startup.cc in PowerDNS (aka pdns) Authoritative Server prior to 2.9.22.5 and 3.x prior to 3.0.1 allows remote malicious users to cause a denial of service (packet loop) via a crafted UDP DNS response.
Powerdns Authoritative Server 3.0
Powerdns Authoritative Server
5.9
CVSSv3
CVE-2016-7073
An issue has been found in PowerDNS prior to 3.4.11 and 4.0.2, and PowerDNS recursor prior to 4.0.4, allowing an attacker in position of man-in-the-middle to alter the content of an AXFR because of insufficient validation of TSIG signatures. A missing check of the TSIG time and f...
Powerdns Recursor
Powerdns Authoritative
Debian Debian Linux 8.0
5.9
CVSSv3
CVE-2016-7074
An issue has been found in PowerDNS prior to 3.4.11 and 4.0.2, and PowerDNS recursor prior to 4.0.4, allowing an attacker in position of man-in-the-middle to alter the content of an AXFR because of insufficient validation of TSIG signatures. A missing check that the TSIG record i...
Powerdns Authoritative
Powerdns Recursor
Debian Debian Linux 8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »