DNS Cache Poisoning Vulnerability in PowerDNS Authoritative Server
CVE-2008-3337

Currently unrated

Key Information:

Vendor: Powerdns
Status: Authoritative Server; Powerdns
Vendor: CVE Published:; 8 August 2008

Summary

The PowerDNS Authoritative Server prior to version 2.9.21.1 is susceptible to a vulnerability where malformed DNS queries can be dropped. This behavior may enable remote attackers to successfully poison DNS caches of other servers and products, leading to potential redirection of users to malicious sites. It is crucial for users operating affected versions to update their installations to mitigate the risk associated with this vulnerability, ensuring the integrity and security of their DNS operations.

References

http://lists.opensuse.org/opensuse-security-announce/2008...

vendor-advisoryx_refsource_SUSE

https://www.redhat.com/archives/fedora-package-announce/2...

vendor-advisoryx_refsource_FEDORA

http://secunia.com/advisories/31401

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Aug 8, 2008
Vulnerability Reserved
Jul 27, 2008