CVE-2015-5230
published 2020-01-15CVE-2015-5230: The DNS packet parsing/generation code in PowerDNS (aka pdns) Authoritative Server 3.4.x before 3.4.6 allows remote attackers to cause a denial of service…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
The DNS packet parsing/generation code in PowerDNS (aka pdns) Authoritative Server 3.4.x before 3.4.6 allows remote attackers to cause a denial of service (crash) via crafted query packets.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | pdns | < pdns 3.4.6-1 (bookworm) | pdns 3.4.6-1 (bookworm) |
| open-xchange | pdns | >= 0 < 3.4.6-1 | 3.4.6-1 |
| open-xchange | pdns | >= 0 < 3.4.6-1 | 3.4.6-1 |
| open-xchange | pdns | >= 0 < 3.4.6-1 | 3.4.6-1 |
| open-xchange | pdns | >= 0 < 3.4.6-1 | 3.4.6-1 |
| powerdns | authoritative | >= 3.4.0 < 3.4.6 | 3.4.6 |
| powerdns | powerdns_authoritative_server | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH