CVE-2016-7068

Advisory lineage Upstream: 0 Downstream: 10
Modified
Published: 11 Sept 2018, 13:00
Last modified:06 Aug 2024, 01:50

Vulnerability Summary

Overall Risk (default)
medium
31/100
CVSS Score
7.8 HIGH
v2.0 (nvd)
EPSS Score
0.08% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

11 Sept 2018, 13:00
Published
Vulnerability first disclosed
06 Aug 2024, 01:50
Last Modified
Vulnerability information updated

Description

An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 3.7.4 and 4.0.4, allowing a remote, unauthenticated attacker to cause an abnormal CPU usage load on the PowerDNS server by sending crafted DNS queries, which might result in a partial denial of service if the system becomes overloaded. This issue is based on the fact that the PowerDNS server parses all records present in a query regardless of whether they are needed or even legitimate. A specially crafted query containing a large number of records can be used to take advantage of that behaviour.

CVSS Metrics

  • v3.0MEDIUMScore: 5.3CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
  • v3.0HIGHScore: 7.5CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • v2.0HIGHScore: 7.8AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS Trends

Current EPSS score: 0.08% Percentile: 25%

Techniques & Countermeasures

  • CWE-400Uncontrolled Resource Consumption

    The product does not properly control the allocation and maintenance of a limited resource.

  • CWE-20Improper Input Validation

    The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Affected Systems

  • debiandebian_linux

    8.0

  • open-xchangepdns

    3.4.11 | 4.0.2 | 3.7.4 | 4.0.4

  • powerdnsauthoritative

    < 3.4.11 | ≥ 4.0.0, < 4.0.2

  • powerdnsrecursor

    < 3.7.4 | ≥ 4.0.0, < 4.0.4

References (4)