George Asenov

**Name of the Vulnerable Software and Affected Versions** PowerDNS Authoritative Server versions prior to 4.1.9 PowerDNS Authoritative Server versions prior to 4.0.8 **Description** The issue is related to an uncontrolled resource consumption in the PowerDNS server. It can be exploited by a remote attacker to cause a denial of service by sending a large number of notifications, potentially leading to a high CPU load or preventing further updates to any slave zone. Only servers configured as slaves are affected by this issue. **Recommendations** For PowerDNS Authoritative Server versions prior to 4.1.9, update to version 4.1.9 or later to resolve the issue. For PowerDNS Authoritative Server versions prior to 4.0.8, update to version 4.0.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the `NOTIFY` messages to minimize the risk of exploitation.