cnvd - cnvd-2017-38247

cnvd-2017-38247

Vulnerability from cnvd

Title: PowerDNS Authoritative Server Module身份验证绕过漏洞（CNVD-2017-38247）

Description:

PowerDNS Authoritative Server可提供DNS相关产品和服务。

PowerDNS Authoritative Server在DNSSEC签名验证中存在身份验证绕过漏洞，可使中间人攻击者伪造签名，绕过安全限制。

Severity: 中

Patch Name: PowerDNS Authoritative Server Module身份验证绕过漏洞（CNVD-2017-38247）的补丁

Patch Description:

PowerDNS Authoritative Server可提供DNS相关产品和服务。

PowerDNS Authoritative Server在DNSSEC签名验证中存在身份验证绕过漏洞，可使中间人攻击者伪造签名，绕过安全限制。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.powerdns.com/https://blog.powerdns.com/2017/11/27/powerdns-authoritative-server-4-0-5-and-recursor-4-0-7-released/

Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-15090

Impacted products

Name
PowerDNS Authoritative Server < 4.0.4

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-15090",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15090"
    }
  },
  "description": "PowerDNS Authoritative Server\u53ef\u63d0\u4f9bDNS\u76f8\u5173\u4ea7\u54c1\u548c\u670d\u52a1\u3002\r\n\r\nPowerDNS Authoritative Server\u5728DNSSEC\u7b7e\u540d\u9a8c\u8bc1\u4e2d\u5b58\u5728\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u53ef\u4f7f\u4e2d\u95f4\u4eba\u653b\u51fb\u8005\u4f2a\u9020\u7b7e\u540d\uff0c\u7ed5\u8fc7\u5b89\u5168\u9650\u5236\u3002",
  "discovererName": "unknown",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttp://www.powerdns.com/https://blog.powerdns.com/2017/11/27/powerdns-authoritative-server-4-0-5-and-recursor-4-0-7-released/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-38247",
  "openTime": "2017-12-27",
  "patchDescription": "PowerDNS Authoritative Server\u53ef\u63d0\u4f9bDNS\u76f8\u5173\u4ea7\u54c1\u548c\u670d\u52a1\u3002\r\n\r\nPowerDNS Authoritative Server\u5728DNSSEC\u7b7e\u540d\u9a8c\u8bc1\u4e2d\u5b58\u5728\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u53ef\u4f7f\u4e2d\u95f4\u4eba\u653b\u51fb\u8005\u4f2a\u9020\u7b7e\u540d\uff0c\u7ed5\u8fc7\u5b89\u5168\u9650\u5236\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "PowerDNS Authoritative Server Module\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\uff08CNVD-2017-38247\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "PowerDNS Authoritative Server \u003c 4.0.4"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2017-15090",
  "serverity": "\u4e2d",
  "submitTime": "2017-12-04",
  "title": "PowerDNS Authoritative Server Module\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\uff08CNVD-2017-38247\uff09"
}

CVE-2017-15090 (GCVE-0-2017-15090)

Vulnerability from cvelistv5

Published

2018-01-23 15:00

Modified

2024-09-16 18:38

Severity ?

CWE

CWE-347

Summary

An issue has been found in the DNSSEC validation component of PowerDNS Recursor from 4.0.0 and up to and including 4.0.6, where the signatures might have been accepted as valid even if the signed data was not in bailiwick of the DNSKEY used to sign it. This allows an attacker in position of man-in-the-middle to alter the content of records by issuing a valid signature for the crafted records.

References

▼	URL	Tags
	https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2017-03.html	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/101982	vdb-entry, x_refsource_BID

Impacted products

	Vendor	Product	Version
	PowerDNS	PowerDNS	Version: from 4.0.0 and up to and including 4.0.6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T19:50:14.915Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2017-03.html"
          },
          {
            "name": "101982",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/101982"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "PowerDNS",
          "vendor": "PowerDNS",
          "versions": [
            {
              "status": "affected",
              "version": "from 4.0.0 and up to and including 4.0.6"
            }
          ]
        }
      ],
      "datePublic": "2017-11-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue has been found in the DNSSEC validation component of PowerDNS Recursor from 4.0.0 and up to and including 4.0.6, where the signatures might have been accepted as valid even if the signed data was not in bailiwick of the DNSKEY used to sign it. This allows an attacker in position of man-in-the-middle to alter the content of records by issuing a valid signature for the crafted records."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-347",
              "description": "CWE-347",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-01-24T10:57:01",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2017-03.html"
        },
        {
          "name": "101982",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/101982"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "DATE_PUBLIC": "2017-11-27T00:00:00",
          "ID": "CVE-2017-15090",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "PowerDNS",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "from 4.0.0 and up to and including 4.0.6"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "PowerDNS"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An issue has been found in the DNSSEC validation component of PowerDNS Recursor from 4.0.0 and up to and including 4.0.6, where the signatures might have been accepted as valid even if the signed data was not in bailiwick of the DNSKEY used to sign it. This allows an attacker in position of man-in-the-middle to alter the content of records by issuing a valid signature for the crafted records."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-347"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2017-03.html",
              "refsource": "CONFIRM",
              "url": "https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2017-03.html"
            },
            {
              "name": "101982",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/101982"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2017-15090",
    "datePublished": "2018-01-23T15:00:00Z",
    "dateReserved": "2017-10-08T00:00:00",
    "dateUpdated": "2024-09-16T18:38:21.212Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted