CVE-2008-3337
published 2008-08-08CVE-2008-3337: PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products…
medium6.4CVSS 3.1
AVNACLAuNCNIPAP
PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products running on other servers, a different issue than CVE-2008-1447 and CVE-2008-3217.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | pdns | < pdns 2.9.21.1-1 (bookworm) | pdns 2.9.21.1-1 (bookworm) |
| open-xchange | pdns | >= 0 < 2.9.21.1-1 | 2.9.21.1-1 |
| open-xchange | pdns | >= 0 < 2.9.21.1-1 | 2.9.21.1-1 |
| open-xchange | pdns | >= 0 < 2.9.21.1-1 | 2.9.21.1-1 |
| open-xchange | pdns | >= 0 < 2.9.21.1-1 | 2.9.21.1-1 |
| powerdns | authoritative_server | <= 2.9.21 | — |
CVSS provenance
nvd6.4MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:P
osv6.8MEDIUM