Описание
Knot DNS before 2.3.0 allows remote DNS servers to cause a denial of service (memory exhaustion and slave server crash) via a large zone transfer for (1) DDNS, (2) AXFR, or (3) IXFR.
Ссылки
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- PatchThird Party Advisory
- Release NotesVDB Entry
- Vendor Advisory
- Technical Description
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- PatchThird Party Advisory
- Release NotesVDB Entry
- Vendor Advisory
- Technical Description
Уязвимые конфигурации
Конфигурация 1Версия до 2.3.0 (исключая)
cpe:2.3:a:knot-dns:knot_dns:*:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01196
Низкий
8.6 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-400
Связанные уязвимости
CVSS3: 8.6
ubuntu
почти 9 лет назад
Knot DNS before 2.3.0 allows remote DNS servers to cause a denial of service (memory exhaustion and slave server crash) via a large zone transfer for (1) DDNS, (2) AXFR, or (3) IXFR.
CVSS3: 8.6
debian
почти 9 лет назад
Knot DNS before 2.3.0 allows remote DNS servers to cause a denial of s ...
CVSS3: 8.6
github
больше 3 лет назад
Knot DNS before 2.3.0 allows remote DNS servers to cause a denial of service (memory exhaustion and slave server crash) via a large zone transfer for (1) DDNS, (2) AXFR, or (3) IXFR.
EPSS
Процентиль: 79%
0.01196
Низкий
8.6 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-400