Vulnerabilities > Powerdns > Powerdns > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-12-09 | CVE-2008-5277 | Configuration vulnerability in Powerdns PowerDNS before 2.9.21.2 allows remote attackers to cause a denial of service (daemon crash) via a CH HINFO query. | 4.3 |
| 2008-08-08 | CVE-2008-3337 | Improper Input Validation vulnerability in Powerdns Authoritative Server and Powerdns PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products running on other servers, a different issue than CVE-2008-1447 and CVE-2008-3217. | 6.4 |
| 2006-04-27 | CVE-2006-2069 | Resource Management Errors vulnerability in Powerdns 3.0 The recursor in PowerDNS before 3.0.1 allows remote attackers to cause a denial of service (application crash) via malformed EDNS0 packets. | 5.0 |
| 2005-12-31 | CVE-2005-0038 | Remote Denial of Service vulnerability in Multiple Vendor DNS Message Decompression The DNS implementation of PowerDNS 2.9.16 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an infinite loop. | 5.0 |
| 2005-07-19 | CVE-2005-2301 | Unspecified vulnerability in Powerdns PowerDNS before 2.9.18, when running with an LDAP backend, does not properly escape LDAP queries, which allows remote attackers to cause a denial of service (failure to answer ldap questions) and possibly conduct an LDAP injection attack. | 5.0 |
| 2005-05-02 | CVE-2005-0428 | Remote Denial of Service vulnerability in Powerdns 2.0Rc1/2.8/2.9.15 The DNSPacket::expand method in dnspacket.cc in PowerDNS before 2.9.17 allows remote attackers to cause a denial of service by sending a random stream of bytes. | 5.0 |