CVE-2008-5277Powerdns vulnerability

CWE-167 documents7 sources
Severity
4.3MEDIUMNVD
EPSS
0.0%
top 91.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Open-xchange PdnsPowerdns
Timeline
PublishedDec 9
Latest updateMay 17

Description

PowerDNS before 2.9.21.2 allows remote attackers to cause a denial of service (daemon crash) via a CH HINFO query.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

NVDpowerdns/powerdns2.9.21.1+39
Debianopen-xchange/pdns< 2.9.21.2-1+3

🔴Vulnerability Details

3
GHSA
GHSA-466m-36cm-ggv7: PowerDNS before 22022-05-17
OSV
CVE-2008-5277: PowerDNS before 22008-12-09
CVEList
CVE-2008-5277: PowerDNS before 22008-12-09

📋Vendor Advisories

2
Red Hat
pdns: DoS (daemon crash) via a CH HINFO query.2008-11-18
Debian
CVE-2008-5277: pdns - PowerDNS before 2.9.21.2 allows remote attackers to cause a denial of service (d...2008

💬Community

1
Bugzilla
CVE-2008-5277 pdns: DoS (daemon crash) via a CH HINFO query.2008-12-09
CVE-2008-5277 — Powerdns vulnerability | cvebase