CVE-2006-4251
Vulnerability from cvelistv5
Published
2006-11-14 19:00
Modified
2024-08-07 19:06
Severity ?
EPSS score ?
Summary
Buffer overflow in PowerDNS Recursor 3.1.3 and earlier might allow remote attackers to execute arbitrary code via a malformed TCP DNS query that prevents Recursor from properly calculating the TCP DNS query length.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T19:06:07.189Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "ADV-2006-4484",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2006/4484"
},
{
"name": "DSA-1211",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2006/dsa-1211"
},
{
"name": "22824",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/22824"
},
{
"name": "SUSE-SA:2006:070",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.suse.com/archive/suse-security-announce/2006-Nov/0007.html"
},
{
"name": "21037",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/21037"
},
{
"name": "22903",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/22903"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://doc.powerdns.com/powerdns-advisory-2006-01.html"
},
{
"name": "22976",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/22976"
},
{
"name": "powerdns-dns-bo(30270)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30270"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-11-13T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in PowerDNS Recursor 3.1.3 and earlier might allow remote attackers to execute arbitrary code via a malformed TCP DNS query that prevents Recursor from properly calculating the TCP DNS query length."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-19T15:57:01",
"orgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5",
"shortName": "debian"
},
"references": [
{
"name": "ADV-2006-4484",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2006/4484"
},
{
"name": "DSA-1211",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2006/dsa-1211"
},
{
"name": "22824",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/22824"
},
{
"name": "SUSE-SA:2006:070",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.suse.com/archive/suse-security-announce/2006-Nov/0007.html"
},
{
"name": "21037",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/21037"
},
{
"name": "22903",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/22903"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://doc.powerdns.com/powerdns-advisory-2006-01.html"
},
{
"name": "22976",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/22976"
},
{
"name": "powerdns-dns-bo(30270)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30270"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@debian.org",
"ID": "CVE-2006-4251",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in PowerDNS Recursor 3.1.3 and earlier might allow remote attackers to execute arbitrary code via a malformed TCP DNS query that prevents Recursor from properly calculating the TCP DNS query length."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "ADV-2006-4484",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2006/4484"
},
{
"name": "DSA-1211",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2006/dsa-1211"
},
{
"name": "22824",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/22824"
},
{
"name": "SUSE-SA:2006:070",
"refsource": "SUSE",
"url": "http://lists.suse.com/archive/suse-security-announce/2006-Nov/0007.html"
},
{
"name": "21037",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/21037"
},
{
"name": "22903",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/22903"
},
{
"name": "http://doc.powerdns.com/powerdns-advisory-2006-01.html",
"refsource": "CONFIRM",
"url": "http://doc.powerdns.com/powerdns-advisory-2006-01.html"
},
{
"name": "22976",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/22976"
},
{
"name": "powerdns-dns-bo(30270)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30270"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5",
"assignerShortName": "debian",
"cveId": "CVE-2006-4251",
"datePublished": "2006-11-14T19:00:00",
"dateReserved": "2006-08-21T00:00:00",
"dateUpdated": "2024-08-07T19:06:07.189Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"3.1.3\", \"matchCriteriaId\": \"0FF03280-64C9-43E0-8A79-DDAFAF049119\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:2.0_rc1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E02559EA-6C7F-4328-A435-B4F69E640645\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:2.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D390616D-8CAB-46D3-864D-09AF99E3A407\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:2.9.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"47DFAA6A-CA5B-4B2A-BFC2-A0DF85BF68D8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:2.9.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"306EBF4B-2292-4B14-9835-9FD0E82FE7CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:2.9.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A31C83E-8A81-4483-A245-FD1C08684183\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:2.9.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"44D51FCC-8AD6-4461-8F48-B77EB2693C89\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"38DDFF27-8CBB-468D-9837-C74538E5EF0A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:3.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B3920499-3580-4EA6-AD56-6515C3B8495A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AF444F17-46F1-4036-B5F1-CA04F7F19684\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:3.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA1E4934-6690-4A09-8E6E-FE7ED57B9DEE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:powerdns:recursor:3.1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D474CF9D-1898-46D3-80B1-2D3743265F56\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Buffer overflow in PowerDNS Recursor 3.1.3 and earlier might allow remote attackers to execute arbitrary code via a malformed TCP DNS query that prevents Recursor from properly calculating the TCP DNS query length.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de b\\u00fafer en PowerDNS Recursor 3.1.3 y anteriores puede que permita a atacantes remotos ejecutar c\\u00f3digo de su elecci\\u00f3n mediante consultas TCP DNS mal formadas que previene a Recursor de calcular correctamente la longitud de una consulta TCP DNS.\"}]",
"evaluatorSolution": "This vulnerability is addressed in the following product release:\r\nPowerDNS, Recursor, 3.1.4",
"id": "CVE-2006-4251",
"lastModified": "2024-11-21T00:15:29.607",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 7.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": true, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2006-11-14T19:07:00.000",
"references": "[{\"url\": \"http://doc.powerdns.com/powerdns-advisory-2006-01.html\", \"source\": \"security@debian.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://lists.suse.com/archive/suse-security-announce/2006-Nov/0007.html\", \"source\": \"security@debian.org\"}, {\"url\": \"http://secunia.com/advisories/22824\", \"source\": \"security@debian.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/22903\", \"source\": \"security@debian.org\"}, {\"url\": \"http://secunia.com/advisories/22976\", \"source\": \"security@debian.org\"}, {\"url\": \"http://www.debian.org/security/2006/dsa-1211\", \"source\": \"security@debian.org\"}, {\"url\": \"http://www.securityfocus.com/bid/21037\", \"source\": \"security@debian.org\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2006/4484\", \"source\": \"security@debian.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/30270\", \"source\": \"security@debian.org\"}, {\"url\": \"http://doc.powerdns.com/powerdns-advisory-2006-01.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://lists.suse.com/archive/suse-security-announce/2006-Nov/0007.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/22824\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/22903\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/22976\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2006/dsa-1211\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/21037\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2006/4484\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/30270\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "security@debian.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2006-4251\",\"sourceIdentifier\":\"security@debian.org\",\"published\":\"2006-11-14T19:07:00.000\",\"lastModified\":\"2024-11-21T00:15:29.607\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in PowerDNS Recursor 3.1.3 and earlier might allow remote attackers to execute arbitrary code via a malformed TCP DNS query that prevents Recursor from properly calculating the TCP DNS query length.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer en PowerDNS Recursor 3.1.3 y anteriores puede que permita a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n mediante consultas TCP DNS mal formadas que previene a Recursor de calcular correctamente la longitud de una consulta TCP DNS.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":true,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.1.3\",\"matchCriteriaId\":\"0FF03280-64C9-43E0-8A79-DDAFAF049119\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:2.0_rc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E02559EA-6C7F-4328-A435-B4F69E640645\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:2.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D390616D-8CAB-46D3-864D-09AF99E3A407\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:2.9.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"47DFAA6A-CA5B-4B2A-BFC2-A0DF85BF68D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:2.9.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"306EBF4B-2292-4B14-9835-9FD0E82FE7CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:2.9.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A31C83E-8A81-4483-A245-FD1C08684183\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:2.9.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"44D51FCC-8AD6-4461-8F48-B77EB2693C89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38DDFF27-8CBB-468D-9837-C74538E5EF0A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:3.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3920499-3580-4EA6-AD56-6515C3B8495A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF444F17-46F1-4036-B5F1-CA04F7F19684\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:3.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA1E4934-6690-4A09-8E6E-FE7ED57B9DEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:3.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D474CF9D-1898-46D3-80B1-2D3743265F56\"}]}]}],\"references\":[{\"url\":\"http://doc.powerdns.com/powerdns-advisory-2006-01.html\",\"source\":\"security@debian.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://lists.suse.com/archive/suse-security-announce/2006-Nov/0007.html\",\"source\":\"security@debian.org\"},{\"url\":\"http://secunia.com/advisories/22824\",\"source\":\"security@debian.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/22903\",\"source\":\"security@debian.org\"},{\"url\":\"http://secunia.com/advisories/22976\",\"source\":\"security@debian.org\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1211\",\"source\":\"security@debian.org\"},{\"url\":\"http://www.securityfocus.com/bid/21037\",\"source\":\"security@debian.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2006/4484\",\"source\":\"security@debian.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/30270\",\"source\":\"security@debian.org\"},{\"url\":\"http://doc.powerdns.com/powerdns-advisory-2006-01.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://lists.suse.com/archive/suse-security-announce/2006-Nov/0007.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/22824\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/22903\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/22976\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1211\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/21037\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2006/4484\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/30270\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorSolution\":\"This vulnerability is addressed in the following product release:\\r\\nPowerDNS, Recursor, 3.1.4\"}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.