Back to search
CVE-2015-5470
Published: Nov 2, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
The label decompression functionality in PowerDNS Recursor before 3.6.4 and 3.7.x before 3.7.3 and Authoritative (Auth) Server before 3.3.3 and 3.4.x before 3.4.5 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a long name that refers to itself. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1868.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://doc.powerdns.com/md/security/powerdns-advisory-2015-01/
x_refsource_CONFIRM
[oss-security] 20150710 Re: Follow up: PowerDNS Security Advisory 2015-01
mailing-list
x_refsource_MLIST
[oss-security] 20150707 Follow up: PowerDNS Security Advisory 2015-01
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now