← back
CVE-2019-10203

CVE-2019-10203

CVSS 4.3 MEDIUMEPSS 1.6%CWE-681
In short

PowerDNS Authoritative daemon crashes when processing certain serial numbers during slave notifications, causing service disruption. An attacker can trigger this by crafting specific DNS zone serial values.

Technical detail

A malformed serial number between 2^31 and 2^32-1 in NOTIFY messages causes the pdns daemon to exit abnormally, resulting in denial of service. The attack requires ability to send NOTIFY packets to the authoritative server; affected versions are 4.0.x before 4.0.9 and 4.1.x before 4.1.11.

Summary generated and translated by AI from the official description.
PowerDNS Authoritative daemon , pdns versions 4.0.x before 4.0.9, 4.1.x before 4.1.11, exiting when encountering a serial between 2^31 and 2^32-1 while trying to notify a slave leads to DoS.
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Affected products
Red Hat · pdns

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10203https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2019-06.html