CVE-2012-0206 — Authoritative Server vulnerability

CWE-3995 documents5 sources

Severity

5.0MEDIUMNVD

EPSS

0.0%

top 99.79%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Open-xchange Pdns Powerdns Authoritative Server

Timeline

PublishedFeb 17

Latest updateMay 4

Description

common_startup.cc in PowerDNS (aka pdns) Authoritative Server before 2.9.22.5 and 3.x before 3.0.1 allows remote attackers to cause a denial of service (packet loop) via a crafted UDP DNS response.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶NVDpowerdns/authoritative_server2.9.22+1

▶Debianopen-xchange/pdns< 3.0-1.1+3

Patches

Patch: doc.powerdns.com ↗Patch: doc.powerdns.com ↗

🔴Vulnerability Details

GHSA

GHSA-4fvg-fh8j-g524: common_startup↗2022-05-04

▶

OSV

CVE-2012-0206: common_startup↗2012-02-17

▶

CVEList

CVE-2012-0206: common_startup↗2012-02-17

▶

📋Vendor Advisories

Debian

CVE-2012-0206: pdns - common_startup.cc in PowerDNS (aka pdns) Authoritative Server before 2.9.22.5 an...↗2012

▶