Vulnerability Details CVE-2005-2302
PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that are denied recursion, which could cause a "blank out" of answers to those clients that are allowed to use recursion.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.4%
CVSS Severity
CVSS v2 Score 2.1
References
- http://doc.powerdns.com/changelog.html#CHANGELOG-2-9-18
- http://marc.info/?l=bugtraq&m=112155941310297&w=2
- http://securitytracker.com/id?1014504
- http://www.novell.com/linux/security/advisories/2005_19_sr.html
- http://doc.powerdns.com/changelog.html#CHANGELOG-2-9-18
- http://marc.info/?l=bugtraq&m=112155941310297&w=2
- http://securitytracker.com/id?1014504
- http://www.novell.com/linux/security/advisories/2005_19_sr.html
Products affected by CVE-2005-2302
-
cpe:2.3:a:powerdns:powerdns:2.9.0
-
cpe:2.3:a:powerdns:powerdns:2.9.1
-
cpe:2.3:a:powerdns:powerdns:2.9.10
-
cpe:2.3:a:powerdns:powerdns:2.9.11
-
cpe:2.3:a:powerdns:powerdns:2.9.12
-
cpe:2.3:a:powerdns:powerdns:2.9.13
-
cpe:2.3:a:powerdns:powerdns:2.9.14
-
cpe:2.3:a:powerdns:powerdns:2.9.15
-
cpe:2.3:a:powerdns:powerdns:2.9.16
-
cpe:2.3:a:powerdns:powerdns:2.9.17
-
cpe:2.3:a:powerdns:powerdns:2.9.2
-
cpe:2.3:a:powerdns:powerdns:2.9.3a
-
cpe:2.3:a:powerdns:powerdns:2.9.4
-
cpe:2.3:a:powerdns:powerdns:2.9.5
-
cpe:2.3:a:powerdns:powerdns:2.9.6
-
cpe:2.3:a:powerdns:powerdns:2.9.7
-
cpe:2.3:a:powerdns:powerdns:2.9.8