High severity7.5NVD Advisory· Published Jul 27, 2018· Updated Jun 17, 2026
CVE-2017-15120
CVE-2017-15120
Description
An issue has been found in the parsing of authoritative answers in PowerDNS Recursor before 4.0.8, leading to a NULL pointer dereference when parsing a specially crafted answer containing a CNAME of a different class than IN. An unauthenticated remote attacker could cause a denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<4.0.8+ 1 more
- (no CPE)range: <4.0.8
- (no CPE)range: 4.0.8
Patches
Vulnerability mechanics
References
5- seclists.org/oss-sec/2017/q4/382nvdMailing ListPatchThird Party Advisory
- doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2017-08.htmlnvdPatchVendor Advisory
- www.securityfocus.com/bid/106335nvdThird Party AdvisoryVDB Entry
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- www.debian.org/security/2017/dsa-4063nvdThird Party Advisory
News mentions
0No linked articles in our index yet.