Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-1868

Опубликовано: 18 мая 2015
Источник: nvd
CVSS2: 7.8
EPSS Низкий

Описание

The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:powerdns:authoritative:3.2:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:authoritative:3.3:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:authoritative:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:authoritative:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:authoritative:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:authoritative:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:authoritative:3.4.3:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
Конфигурация 3

Одно из

cpe:2.3:a:powerdns:recursor:3.5:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:recursor:3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:recursor:3.5.2:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:recursor:3.5.3:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:recursor:3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:recursor:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:recursor:3.6.2:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:recursor:3.6.3:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:recursor:3.7.1:*:*:*:*:*:*:*

EPSS

Процентиль: 57%
0.00351
Низкий

7.8 High

CVSS2

Дефекты

CWE-399

Связанные уязвимости

ubuntu логотип

CVE-2015-1868

ubuntu
больше 10 лет назад

The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself.

debian логотип

CVE-2015-1868

debian
больше 10 лет назад

The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6. ...

github логотип

GHSA-9r88-88v4-3j6c

github
больше 3 лет назад

The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself.

EPSS

Процентиль: 57%
0.00351
Низкий

7.8 High

CVSS2

Дефекты

CWE-399