PT-2018-12651 · Powerdns+1 · Powerdns Dnsdist+1

Richard Gibson

Published

2018-11-26

Updated

2024-06-15

CVE-2018-14663

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions PowerDNS DNSDist versions prior to 1.3.3

Description The issue allows a remote attacker to craft a DNS query with trailing data, potentially smuggling it to the backend as a valid record. This occurs when PowerDNS DNSDist is used as a DNS Firewall and either the useClientSubnet or addXPF parameters are used. The issue can bypass filtering of records that should not be received by the backend.

Recommendations For PowerDNS DNSDist versions prior to 1.3.3, update to version 1.3.3 or later to resolve the issue. As a temporary workaround, consider disabling the use of useClientSubnet or addXPF parameters when declaring a new backend until a patch is available. Restrict access to the backend to minimize the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2018-14663

OPENSUSE-SU-2023_2760-2

OPENSUSE-SU-2024:12731-1

SUSE-SU-2023:2760-1

SUSE-SU-2023:2760-2

SUSE-SU-2023:2777-1

Affected Products

Powerdns Dnsdist

Suse

PT-2018-12651 · Powerdns+1 · Powerdns Dnsdist+1

CVE-2018-14663

Weakness Enumeration

Related Identifiers

Affected Products

References · 22