CVE-2008-5277

PowerDNS before 2.9.21.2 allows remote attackers to cause a denial of service (daemon crash) via a CH HINFO query.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 6%
VendorProductVersion
powerdnspowerdns
𝑥
≤ 2.9.21.1
powerdnspowerdns
1.99.1
powerdnspowerdns
1.99.2
powerdnspowerdns
1.99.3
powerdnspowerdns
1.99.4
powerdnspowerdns
1.99.5
powerdnspowerdns
1.99.6
powerdnspowerdns
1.99.7
powerdnspowerdns
1.99.8
powerdnspowerdns
1.99.9
powerdnspowerdns
1.99.10
powerdnspowerdns
1.99.11
powerdnspowerdns
1.99.12
powerdnspowerdns
2.0
powerdnspowerdns
2.0:rc1
powerdnspowerdns
2.0:rc2
powerdnspowerdns
2.0.1
powerdnspowerdns
2.1
powerdnspowerdns
2.2
powerdnspowerdns
2.3
powerdnspowerdns
2.4
powerdnspowerdns
2.5
powerdnspowerdns
2.5.1
powerdnspowerdns
2.6
powerdnspowerdns
2.8
powerdnspowerdns
2.9.0
powerdnspowerdns
2.9.1
powerdnspowerdns
2.9.2
powerdnspowerdns
2.9.3a:a
powerdnspowerdns
2.9.4
powerdnspowerdns
2.9.5
powerdnspowerdns
2.9.6
powerdnspowerdns
2.9.7
powerdnspowerdns
2.9.8
powerdnspowerdns
2.9.10
powerdnspowerdns
2.9.11
powerdnspowerdns
2.9.12
powerdnspowerdns
2.9.13
powerdnspowerdns
2.9.14
powerdnspowerdns
2.9.15
powerdnspowerdns
2.9.16
powerdnspowerdns
2.9.17
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
pdns
bullseye
4.4.1-1
fixed
etch
not-affected
bookworm
4.7.3-2
fixed
sid
4.9.2-1
fixed
trixie
4.9.2-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
pdns
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
not-affected
jaunty
not-affected
intrepid
ignored
hardy
ignored
gutsy
ignored
dapper
ignored
Common Weakness Enumeration
References
http://doc.powerdns.com/powerdns-advisory-2008-03.html
http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html
http://secunia.com/advisories/32979
http://secunia.com/advisories/33264
http://security.gentoo.org/glsa/glsa-200812-19.xml
http://securitytracker.com/id?1021304
http://www.securityfocus.com/bid/32627
https://exchange.xforce.ibmcloud.com/vulnerabilities/47076
http://doc.powerdns.com/powerdns-advisory-2008-03.html
http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html
http://secunia.com/advisories/32979
http://secunia.com/advisories/33264
http://security.gentoo.org/glsa/glsa-200812-19.xml
http://securitytracker.com/id?1021304
http://www.securityfocus.com/bid/32627
https://exchange.xforce.ibmcloud.com/vulnerabilities/47076