Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
DNS:POWERDNS-NAMSRVR-DOS |
|---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
DNS |
Keywords |
PowerDNS Nameserver Label Decompression DOS |
Release Date |
2015/06/15 |
Update Number |
2506 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
DNS: PowerDNS Nameserver Label Decompression DOS
This signature detects attempts to exploit a known vulnerability in the PowerDNS. A successful attack can lead to denial of service.
Extended Description
The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself.
Affected Products
- Fedoraproject fedora 20
- Fedoraproject fedora 21
- Fedoraproject fedora 22
- Powerdns authoritative 3.2
- Powerdns authoritative 3.3
- Powerdns authoritative 3.3.1
- Powerdns authoritative 3.3.2
- Powerdns authoritative 3.4.0
- Powerdns authoritative 3.4.1
- Powerdns authoritative 3.4.3
- Powerdns recursor 3.5
- Powerdns recursor 3.5.1
- Powerdns recursor 3.5.2
- Powerdns recursor 3.5.3
- Powerdns recursor 3.6.0
- Powerdns recursor 3.6.1
- Powerdns recursor 3.6.2
- Powerdns recursor 3.6.3
- Powerdns recursor 3.7.1
References
- CVE: CVE-2015-1868