cvedb.io
CVE-2018-1046
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2018-07-16T20:29:00.317 · Last modified 2026-06-17T01:50:21.550

Summary

pdns before version 4.1.2 is vulnerable to a buffer overflow in dnsreplay. In the dnsreplay tool provided with PowerDNS Authoritative, replaying a specially crafted PCAP file can trigger a stack-based buffer overflow, leading to a crash and potentially arbitrary code execution. This buffer overflow only occurs when the -ecs-stamp option of dnsreplay is used.

Affected products

powerdns — pdns

Does this affect you?

Add your gear to cvedb and we'll alert you only when powerdns ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.