Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that are denied recursion, which could cause a "blank out" of answers to those clients that are allowed to use recursion.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PowerDNS recursion 拒绝服务漏洞
Vulnerability Description
PowerDNS是荷兰PowerDNS公司的一个跨平台的开源DNS服务组件,它支持在Windows系统中使用Access的mdb文件记录DNS信息,在Linux/Unix系统中使用MySQL来记录DNS信息。 PowerDNS 2.9.18之前的版本存在拒绝服务漏洞。 在允许递归到限制的IP地址范围时,由于未正确处理来自拒绝递归客户机的问题,这会将答案"空白输出"给那些允许使用递归的客户机,攻击者利用这个漏洞,可以进行拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A