漏洞信息详情
PowerDNS Recursor远程缓存投毒漏洞
- CNNVD编号:CNNVD-201001-052
- 危害等级: 中危
- CVE编号: CVE-2009-4010
- 漏洞类型: 资料不足
- 发布时间: 2010-01-08
- 威胁类型: 远程
- 更新时间: 2010-01-11
- 厂 商: powerdns
- 漏洞来源: bert hubert bert.h...
漏洞简介
PowerDNS Recursor(又名pdns_recursor)是荷兰PowerDNS公司的一款域名解析服务器。
远程攻击者可以诱骗PowerDNS Recursor接受恶意的数据,服务器在解析递归客户端查询期间可能错误的向其缓存添加记录,这是一种缓存中毒的情况。
DNS缓存中毒指的是更改了DNS服务器的DNS缓存中某项,这样缓存中与主机名相关的IP地址就不再指向正确的位置。例如,如果www.example.com映射到IP地址192.168.0.1且DNS服务器的缓存中存在这个映射,则成功向这个服务器的DNS缓存投毒的攻击者就可以将www.example.com映射到10.0.0.1。在这种情况下,试图访问www.example.com的用户就可能与错误的Web服务器联络。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
Debian Linux 5.0 ia-64
Debian pdns-recursor_3.1.7-1+lenny1_ia64.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.7-1+lenny1_ia64.deb
Debian Linux 4.0 powerpc
Debian pdns-recursor_3.1.4+v3.1.7-0+etch1_powerpc.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.4+v3.1.7-0+etch1_powerpc.deb
Debian Linux 5.0 alpha
Debian pdns-recursor_3.1.7-1+lenny1_alpha.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.7-1+lenny1_alpha.deb
PowerDNS PowerDNS 3.1
PowerDNS pdns-recursor-3.1.7.2.tar.bz2
http://downloads.powerdns.com/releases/pdns-recursor-3.1.7.2.tar.bz2
Debian Linux 5.0 ia-32
Debian pdns-recursor_3.1.7-1+lenny1_i386.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.7-1+lenny1_i386.deb
Debian Linux 5.0 s/390
Debian pdns-recursor_3.1.7-1+lenny1_s390.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.7-1+lenny1_s390.deb
Debian Linux 4.0 amd64
Debian pdns-recursor_3.1.4+v3.1.7-0+etch1_amd64.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.4+v3.1.7-0+etch1_amd64.deb
Debian Linux 4.0 ia-32
Debian pdns-recursor_3.1.4+v3.1.7-0+etch1_i386.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.4+v3.1.7-0+etch1_i386.deb
Debian Linux 4.0 s/390
Debian pdns-recursor_3.1.4+v3.1.7-0+etch1_s390.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.4+v3.1.7-0+etch1_s390.deb
Debian Linux 4.0 alpha
Debian pdns-recursor_3.1.4+v3.1.7-0+etch1_alpha.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.4+v3.1.7-0+etch1_alpha.deb
Debian Linux 5.0 amd64
Debian pdns-recursor_3.1.7-1+lenny1_amd64.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.7-1+lenny1_amd64.deb
Debian Linux 5.0 powerpc
Debian pdns-recursor_3.1.7-1+lenny1_powerpc.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.7-1+lenny1_powerpc.deb
Debian Linux 4.0 ia-64
Debian pdns-recursor_3.1.4+v3.1.7-0+etch1_ia64.deb
http://security.debian.org/pool/updates/main/p/pdns-recursor/pdns-recu rsor_3.1.4+v3.1.7-0+etch1_ia64.deb
PowerDNS PowerDNS 3.0
PowerDNS pdns-recursor-3.1.7.2.tar.bz2
http://downloads.powerdns.com/releases/pdns-recursor-3.1.7.2.tar.bz2
PowerDNS PowerDNS 3.0.1
PowerDNS pdns-recursor-3.1.7.2.tar.bz2
http://downloads.powerdns.com/releases/pdns-recursor-3.1.7.2.tar.bz2
PowerDNS PowerDNS 3.1.1
PowerDNS pdns-recursor-3.1.7.2.tar.bz2
http://downloads.powerdns.com/releases/pdns-recursor-3.1.7.2.tar.bz2
PowerDNS PowerDNS 3.1.2
PowerDNS pdns-recursor-3.1.7.2.tar.bz2
http://downloads.powerdns.com/releases/pdns-recursor-3.1.7.2.tar.bz2
PowerDNS PowerDNS 3.1.3
PowerDNS pdns-recursor-3.1.7.2.tar.bz2
http://downloads.powerdns.com/releases/pdns-recursor-3.1.7.2.tar.bz2
PowerDNS PowerDNS 3.1.4
PowerDNS pdns-recursor-3.1.7.2.tar.bz2
http://downloads.powerdns.com/releases/pdns-recursor-3.1.7.2.tar.bz2
PowerDNS PowerDNS 3.1.5
PowerDNS pdns-recursor-3.1.7.2.tar.bz2
http://downloads.powerdns.com/releases/pdns-recursor-3.1.7.2.tar.bz2
PowerDNS PowerDNS 3.1.6
PowerDNS pdns-recursor-3.1.7.2.tar.bz2
http://downloads.powerdns.com/releases/pdns-recursor-3.1.7.2.tar.bz2
PowerDNS PowerDNS 3.1.7 .1
PowerDNS pdns-recursor-3.1.7.2.tar.bz2
http://downloads.powerdns.com/releases/pdns-recursor-3.1.7.2.tar.bz2
PowerDNS PowerDNS 3.1.7
PowerDNS pdns-recursor-3.1.7.2.tar.bz2
http://downloads.powerdns.com/releases/pdns-recursor-3.1.7.2.tar.bz2
参考网址
来源: VUPEN
名称: ADV-2010-0054
链接:http://www.vupen.com/english/advisories/2010/0054
来源: FEDORA
名称: FEDORA-2010-0228
链接:https://www.redhat.com/archives/fedora-package-announce/2010-January/msg00228.HTML
来源: FEDORA
名称: FEDORA-2010-0209
链接:https://www.redhat.com/archives/fedora-package-announce/2010-January/msg00217.HTML
来源: bugzilla.redhat.com
链接:https://bugzilla.redhat.com/show_bug.cgi?id=552285
来源: XF
名称: powerdns-zones-spoofing(55439)
链接:http://xforce.iss.net/xforce/xfdb/55439
来源: BID
名称: 37653
链接:http://www.securityfocus.com/bid/37653
来源: BUGTRAQ
名称: 20100106 Critical PowerDNS Recursor Security Vulnerabilities: please upgrade ASAP to 3.1.7.2
链接:http://www.securityfocus.com/archive/1/archive/1/508743/100/0/threaded
来源: SECTRACK
名称: 1023404
链接:http://securitytracker.com/id?1023404
来源: SECUNIA
名称: 38068
链接:http://secunia.com/advisories/38068
来源: SECUNIA
名称: 38004
链接:http://secunia.com/advisories/38004
来源: doc.powerdns.com
链接:http://doc.powerdns.com/powerdns-advisory-2010-02.HTML
来源:NSFOCUS 名称:14304 链接:http://www.nsfocus.net/vulndb/14304
受影响实体
- Powerdns Recursor:3.1.7.2
- Powerdns Recursor:3.1.7.1
- Powerdns Recursor:2.9.15
- Powerdns Recursor:2.8
- Powerdns Recursor:2.0_rc1
补丁
- pdns-recursor-3.2-1.x86_64.rpm
- pdns-recursor-3.2-1.i386.rpm
- pdns-recursor-3.2
- pdns-recursor_3.2-1_amd64
- pdns-recursor-3.1.7.2
评论