메뉴 건너뛰기

GREATUSER

cve

CVE-2017-15093

관리자 2018.01.25 04:00 조회 수 : 13

When api-config-dir is set to a non-empty value, which is not the case by default, the API in PowerDNS Recursor 4.x up to and including 4.0.6 and 3.x up to and including 3.7.4 allows an authorized user to update the Recursor's ACL by adding and removing netmasks, and to configure forward zones. It was discovered that the new netmask and IP addresses of forwarded zones were not sufficiently validated, allowing an authenticated user to inject new configuration directives into the Recursor's configuration.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-15093
번호 제목 글쓴이 날짜 조회 수
557 CVE-2017-2741 관리자 2018.01.25 13
556 CVE-2017-2740 관리자 2018.01.25 14
555 CVE-2017-15105 관리자 2018.01.25 14
554 CVE-2017-15107 관리자 2018.01.25 15
553 CVE-2017-2742 관리자 2018.01.25 13
552 CVE-2017-15092 관리자 2018.01.25 13
551 CVE-2017-15091 관리자 2018.01.25 13
550 CVE-2017-15090 관리자 2018.01.25 18
549 CVE-2017-15094 관리자 2018.01.25 11
» CVE-2017-15093 관리자 2018.01.25 13
547 CVE-2018-1000012 관리자 2018.01.25 15
546 CVE-2018-1000016 관리자 2018.01.25 13
545 CVE-2015-1142857 관리자 2018.01.25 14
544 CVE-2018-1000014 관리자 2018.01.25 11
543 CVE-2018-1000015 관리자 2018.01.25 15
위로