메뉴 건너뛰기

GREATUSER

cve

CVE-2017-15091

관리자 2018.01.25 04:00 조회 수 : 13

An issue has been found in the API component of PowerDNS Authoritative 4.x up to and including 4.0.4 and 3.x up to and including 3.4.11, where some operations that have an impact on the state of the server are still allowed even though the API has been configured as read-only via the api-readonly keyword. This missing check allows an attacker with valid API credentials to flush the cache, trigger a zone transfer or send a NOTIFY.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-15091
번호 제목 글쓴이 날짜 조회 수
107 CVE-2017-12116 관리자 2018.01.25 11
106 CVE-2017-12119 관리자 2018.01.25 9
105 CVE-2017-12118 관리자 2018.01.25 4
104 CVE-2017-15112 관리자 2018.01.25 4
103 CVE-2017-15111 관리자 2018.01.25 4
102 CVE-2017-14803 관리자 2018.01.25 4
101 CVE-2017-12130 관리자 2018.01.25 4
100 CVE-2017-15108 관리자 2018.01.25 4
99 CVE-2017-18045 관리자 2018.01.25 5
98 CVE-2018-5957 관리자 2018.01.25 6
97 CVE-2016-10708 관리자 2018.01.25 10
96 CVE-2018-5955 관리자 2018.01.25 5
95 CVE-2018-5958 관리자 2018.01.25 17
94 CVE-2018-5956 관리자 2018.01.25 6
93 CVE-2017-18046 관리자 2018.01.25 9
위로