PowerDNS LDAP Backend Query Escape Failure Vulnerability

The PowerDNS LDAP back-end did not adequately escape requests prior to version 2.9.18. As a result, it was possible for requests to fail without answering questions. This may have security implications in environments where PowerDNS and LDAP are used. The vendor has fixed this in version 2.9.18.


 

Privacy Statement
Copyright 2010, SecurityFocus