LDAP Injection Vulnerability in PowerDNS

LDAP Injection Vulnerability in PowerDNS

CVE-2005-2301 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

PowerDNS before 2.9.18, when running with an LDAP backend, does not properly escape LDAP queries, which allows remote attackers to cause a denial of service (failure to answer ldap questions) and possibly conduct an LDAP injection attack.

Learn more about our Web Application Penetration Testing UK.