FreeBSD : powerdns-recursor -- multiple vulnerabilities (dd8f2394-fd08-11de-b425-00215c6a37bb)

critical Nessus Plugin ID 43847

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

PowerDNS Security Advisory reports :

PowerDNS Recursor up to and including 3.1.7.1 can be brought down and probably exploited.

PowerDNS Recursor up to and including 3.1.7.1 can be spoofed into accepting bogus data

Solution

Update the affected package.

Plugin Details

Severity: Critical

ID: 43847

File Name: freebsd_pkg_dd8f2394fd0811deb42500215c6a37bb.nasl

Version: 1.14

Type: local

Family: FreeBSD Local Security Checks

Published: 1/11/2010

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:powerdns-recursor, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Exploit Ease: No known exploits are available

Patch Publication Date: 1/9/2010

Vulnerability Publication Date: 1/6/2010

Reference Information

CVE: CVE-2009-4009, CVE-2009-4010

BID: 37650, 37653

CWE: 119

Detections

Analytics