docs/security-advisories/powerdns-advisory-2008-02.rst

   1 PowerDNS Security Advisory 2008-02: By not responding to certain queries, domains become easier to spoof
   2 --------------------------------------------------------------------------------------------------------
   3
   4 -  CVE: CVE-2008-3337
   5 -  Date: 6th of August 2008
   6 -  Affects: PowerDNS Authoritative Server 2.9.21 and earlier
   7 -  Not affected: No versions of the PowerDNS Recursor ('pdns\_recursor')
   8    are affected.
   9 -  Severity: Moderate
  10 -  Impact: Data manipulation; client redirection
  11 -  Exploit: Domains with servers that drop certain queries can be
  12    spoofed using simpler measures than would usually be required
  13 -  Solution: Upgrade to PowerDNS Authoritative Server 2.9.21.1, or apply
  14    `commit
  15    1239 <http://wiki.powerdns.com/projects/trac/changeset/1239>`__.
  16 -  Workaround: None known.
  17
  18 Brian J. Dowling of Simplicity Communications has discovered a security
  19 implication of the previous PowerDNS behaviour to drop queries it
  20 considers malformed. We are grateful that Brian notified us quickly
  21 about this problem.
  22
  23 The implication is that while the PowerDNS Authoritative server itself
  24 does not face a security risk because of dropping these malformed
  25 queries, other resolving nameservers run a higher risk of accepting
  26 spoofed answers for domains being hosted by PowerDNS Authoritative
  27 Servers before 2.9.21.1.
  28
  29 While the dropping of queries does not aid sophisticated spoofing
  30 attempts, it does facilitate simpler attacks.