Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue has been found in PowerDNS Recursor 4.1.0 up to and including 4.3.0. It allows an attacker (with enough privileges to change the system's hostname) to cause disclosure of uninitialized memory content via a stack-based out-of-bounds read. It only occurs on systems where gethostname() does not have '\0' termination of the returned string if the hostname is larger than the supplied buffer. (Linux systems are not affected because the buffer is always large enough. OpenBSD systems are not affected because the returned hostname always has '\0' termination.) Under some conditions, this issue can lead to the writing of one '\0' byte out-of-bounds on the stack, causing a denial of service or possibly arbitrary code execution.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PowerDNS Recursor 缓冲区错误漏洞
Vulnerability Description
PowerDNS Recursor(pdns_recursor)是荷兰PowerDNS公司的一款域名解析服务器。 PowerDNS Recursor 4.1.0版本至4.3.0版本中存在安全漏洞。攻击者可利用该漏洞获取未初始化的内存内容,造成拒绝服务或可能执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A