DNS Spoofing Vulnerability in PowerDNS Recursor by PowerDNS
CVE-2009-4010

Currently unrated

Key Information:

Vendor: Powerdns
Status: Recursor
Vendor: CVE Published:; 8 January 2010

Summary

An unspecified vulnerability in PowerDNS Recursor prior to version 3.1.7.2 enables remote attackers to spoof DNS data through specially crafted DNS zones. This flaw can lead to malicious activities, as attackers can manipulate DNS responses, potentially redirecting users to harmful sites. System administrators are urged to upgrade to version 3.1.7.2 or later to mitigate this risk.

References

https://www.redhat.com/archives/fedora-package-announce/2...

vendor-advisoryx_refsource_FEDORA

http://doc.powerdns.com/powerdns-advisory-2010-02.html

x_refsource_CONFIRM

http://www.securityfocus.com/archive/1/508743/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Jan 8, 2010
Vulnerability Reserved
Nov 19, 2009