What is CVE-2015-1868?

CVE-2015-1868 is a vulnerability in Powerdns Authoritative, classified under CWE-399. Published 2015-05-18.

Is CVE-2015-1868 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Powerdns Authoritative

CVE-2015-1868

The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of ser…

EPSS: 0.005 (66.6th percentile) — read the EPSS interpretation.

Affected products

Powerdns Authoritative — versions 3.2, 3.3, 3.3.1
Powerdns Recursor — versions 3.5, 3.5.1, 3.5.2
Fedoraproject Fedora — versions 20, 21, 22
N/a — versions n/a

Weakness classification (CWE)

CWE-399

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

FEDORA-2015-7079 (x_refsource_FEDORA, vendor-advisory, Third Party Advisory)
FEDORA-2015-7031 (x_refsource_FEDORA, vendor-advisory, Third Party Advisory)
FEDORA-2015-7018 (x_refsource_FEDORA, vendor-advisory, Third Party Advisory)
74306 (Third Party Advisory, vdb-entry, x_refsource_BID)
FEDORA-2015-7033 (x_refsource_FEDORA, vendor-advisory, Third Party Advisory)
FEDORA-2015-7047 (x_refsource_FEDORA, vendor-advisory, Third Party Advisory)
DSA-3306 (vendor-advisory, x_refsource_DEBIAN)
DSA-3307 (vendor-advisory, x_refsource_DEBIAN)
1032220 (Third Party Advisory, vdb-entry, x_refsource_SECTRACK)
FEDORA-2015-7057 (x_refsource_FEDORA, vendor-advisory, Third Party Advisory)

Frequently asked questions

What is CVE-2015-1868?: CVE-2015-1868 is a vulnerability in Powerdns Authoritative, classified under CWE-399. Published 2015-05-18.
Is CVE-2015-1868 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.