Unrated severityNVD Advisory· Published Jan 8, 2010· Updated Apr 23, 2026
CVE-2009-4009
CVE-2009-4009
Description
Buffer overflow in PowerDNS Recursor before 3.1.7.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via crafted packets.
Affected products
18cpe:2.3:a:powerdns:recursor:*:*:*:*:*:*:*:*+ 17 more
- cpe:2.3:a:powerdns:recursor:*:*:*:*:*:*:*:*range: <=3.1.7.2
- cpe:2.3:a:powerdns:recursor:2.0_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:2.8:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:2.9.15:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:2.9.16:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:2.9.17:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:2.9.18:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:3.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:3.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:3.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:3.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:3.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:3.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:powerdns:recursor:3.1.7.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- www.securityfocus.com/bid/37650nvdPatch
- secunia.com/advisories/38068nvdVendor Advisory
- www.vupen.com/english/advisories/2010/0054nvdVendor Advisory
- doc.powerdns.com/powerdns-advisory-2010-01.htmlnvd
- secunia.com/advisories/38004nvd
- securitytracker.com/idnvd
- www.securityfocus.com/archive/1/508743/100/0/threadednvd
- bugzilla.redhat.com/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/55438nvd
- www.redhat.com/archives/fedora-package-announce/2010-January/msg00217.htmlnvd
- www.redhat.com/archives/fedora-package-announce/2010-January/msg00228.htmlnvd
News mentions
0No linked articles in our index yet.