Title : PowerDNS Malformed Queries Dropping Security Weakness VUPEN ID : VUPEN/ADV-2008-2320 CVE ID : CVE-2008-3337 CWE ID : CWE-20
Rated as : Low Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2008-08-11
Technical Description
A vulnerability has been identified in PowerDNS, which could be exploited by attackers to bypass security restrictions. This issue is caused by an error when dropping malformed DNS queries, which could facilitate spoofing attacks against certain DNS servers.
