What is the severity of CVE-2008-5277?

CVE-2008-5277 has been classified as a medium severity vulnerability due to its potential to cause a denial of service by crashing the PowerDNS daemon.

How do I fix CVE-2008-5277?

To mitigate CVE-2008-5277, upgrade PowerDNS to version 2.9.21.2 or later, which addresses this vulnerability.

What versions of PowerDNS are affected by CVE-2008-5277?

CVE-2008-5277 affects PowerDNS versions prior to 2.9.21.2, including all versions of 2.9 and earlier, specifically versions 1.99.1 to 2.9.17.

Can CVE-2008-5277 be exploited remotely?

Yes, CVE-2008-5277 can be exploited remotely through specially crafted CH HINFO DNS queries that cause the PowerDNS daemon to crash.

What is the impact of CVE-2008-5277 on systems running PowerDNS?

The impact of CVE-2008-5277 is a denial of service, resulting in the PowerDNS service being temporarily unavailable due to daemon crashes.

Vulnerability/
CVE-2008-5277

medium

4.3

CWE

9/12/2008

7/8/2024

CVE-2008-5277

First published: Tue Dec 09 2008(Updated: )

PowerDNS before 2.9.21.2 allows remote attackers to cause a denial of service (daemon crash) via a CH HINFO query.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
PowerDNS DNSDist	=2.5
PowerDNS DNSDist	=2.0.1
PowerDNS DNSDist	=2.9.6
PowerDNS DNSDist	=2.9.12
PowerDNS DNSDist	=2.9.7
PowerDNS DNSDist	=2.6
PowerDNS DNSDist	=2.0-rc2
PowerDNS DNSDist	=1.99.9
PowerDNS DNSDist	<=2.9.21.1
PowerDNS DNSDist	=2.4
PowerDNS DNSDist	=2.9.1
PowerDNS DNSDist	=2.9.17
PowerDNS DNSDist	=1.99.10
PowerDNS DNSDist	=2.9.10
PowerDNS DNSDist	=1.99.1
PowerDNS DNSDist	=1.99.3
PowerDNS DNSDist	=1.99.6
PowerDNS DNSDist	=2.8
PowerDNS DNSDist	=2.3
PowerDNS DNSDist	=2.9.2
PowerDNS DNSDist	=1.99.11
PowerDNS DNSDist	=2.9.8
PowerDNS DNSDist	=2.9.0
PowerDNS DNSDist	=1.99.8
PowerDNS DNSDist	=1.99.4
PowerDNS DNSDist	=2.1
PowerDNS DNSDist	=1.99.12
PowerDNS DNSDist	=2.9.11
PowerDNS DNSDist	=2.9.16
PowerDNS DNSDist	=1.99.7
PowerDNS DNSDist	=2.9.13
PowerDNS DNSDist	=2.2
PowerDNS DNSDist	=2.9.5
PowerDNS DNSDist	=1.99.2
PowerDNS DNSDist	=2.9.4
PowerDNS DNSDist	=2.9.3a
PowerDNS DNSDist	=2.5.1
PowerDNS DNSDist	=2.0
PowerDNS DNSDist	=2.0-rc1
PowerDNS DNSDist	=2.9.14
PowerDNS DNSDist	=2.9.15
PowerDNS DNSDist	=1.99.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2008-5277?
CVE-2008-5277 has been classified as a medium severity vulnerability due to its potential to cause a denial of service by crashing the PowerDNS daemon.
How do I fix CVE-2008-5277?
To mitigate CVE-2008-5277, upgrade PowerDNS to version 2.9.21.2 or later, which addresses this vulnerability.
What versions of PowerDNS are affected by CVE-2008-5277?
CVE-2008-5277 affects PowerDNS versions prior to 2.9.21.2, including all versions of 2.9 and earlier, specifically versions 1.99.1 to 2.9.17.
Can CVE-2008-5277 be exploited remotely?
Yes, CVE-2008-5277 can be exploited remotely through specially crafted CH HINFO DNS queries that cause the PowerDNS daemon to crash.
What is the impact of CVE-2008-5277 on systems running PowerDNS?
The impact of CVE-2008-5277 is a denial of service, resulting in the PowerDNS service being temporarily unavailable due to daemon crashes.

agent/references
agent/weakness
agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/author
agent/description
agent/event
agent/first-publish-date
agent/source
agent/softwarecombine
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/powerdns
canonical/powerdns dnsdist
version/powerdns dnsdist/2.5
version/powerdns dnsdist/2.0.1
version/powerdns dnsdist/2.9.6
version/powerdns dnsdist/2.9.12
version/powerdns dnsdist/2.9.7
version/powerdns dnsdist/2.6
version/powerdns dnsdist/2.0-rc2
version/powerdns dnsdist/1.99.9
version/powerdns dnsdist/2.9.21.1
version/powerdns dnsdist/2.4
version/powerdns dnsdist/2.9.1
version/powerdns dnsdist/2.9.17
version/powerdns dnsdist/1.99.10
version/powerdns dnsdist/2.9.10
version/powerdns dnsdist/1.99.1
version/powerdns dnsdist/1.99.3
version/powerdns dnsdist/1.99.6
version/powerdns dnsdist/2.8
version/powerdns dnsdist/2.3
version/powerdns dnsdist/2.9.2
version/powerdns dnsdist/1.99.11
version/powerdns dnsdist/2.9.8
version/powerdns dnsdist/2.9.0
version/powerdns dnsdist/1.99.8
version/powerdns dnsdist/1.99.4
version/powerdns dnsdist/2.1
version/powerdns dnsdist/1.99.12
version/powerdns dnsdist/2.9.11
version/powerdns dnsdist/2.9.16
version/powerdns dnsdist/1.99.7
version/powerdns dnsdist/2.9.13
version/powerdns dnsdist/2.2
version/powerdns dnsdist/2.9.5
version/powerdns dnsdist/1.99.2
version/powerdns dnsdist/2.9.4
version/powerdns dnsdist/2.9.3a
version/powerdns dnsdist/2.5.1
version/powerdns dnsdist/2.0
version/powerdns dnsdist/2.0-rc1
version/powerdns dnsdist/2.9.14
version/powerdns dnsdist/2.9.15
version/powerdns dnsdist/1.99.5