CVE-2016-7074
EUVD-2016-795411.09.2018, 13:29
An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 4.0.4, allowing an attacker in position of man-in-the-middle to alter the content of an AXFR because of insufficient validation of TSIG signatures. A missing check that the TSIG record is the last one, leading to the possibility of parsing records that are not covered by the TSIG signature.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| powerdns | authoritative | 𝑥 < 3.4.11 |
| powerdns | authoritative | 4.0.0 ≤ 𝑥 < 4.0.2 |
| powerdns | recursor | 𝑥 < 4.0.4 |
| debian | debian_linux | 8.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| pdns |
| ||||||||||||||||||||||||||||||||||||||
| pdns-recursor |
|
Common Weakness Enumeration
References