CVE-2005-2301 Information

Description

PowerDNS before 2.9.18 when running with an LDAP backend does not properly escape LDAP queries which allows remote attackers to cause a denial of service (failure to answer ldap questions) and possibly conduct an LDAP injection attack.

Reference

http://doc.powerdns.com/changelog.htmlCHANGELOG-2-9-18 http://marc.info/?l=bugtraq&m=112155941310297&w=2 http://securitytracker.com/id?1014504 http://www.novell.com/linux/security/advisories/2005_19_sr.html http://www.securityfocus.com/bid/14290