CVE-2016-2120
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2016-2120
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An issue has been found in PowerDNS Authoritative Server versions up to and including 3.4.10, 4.0.1 allowing an authorized user to crash the server by inserting a specially crafted record in a zone under their control then sending a DNS query for that record. The issue is due to an integer overflow when checking if the content of the record matches the expected size, allowing an attacker to cause a read past the buffer boundary.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
整数溢出或超界折返
Source: NVD (National Vulnerability Database)
Vulnerability Title
PowerDNS Authoritative Server 输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PowerDNS(又名pdns)Authoritative Server是荷兰PowerDNS公司的一款DNS服务器。 PowerDNS Authoritative Server 3.4.10及之前版本和4.0.1及之前版本中存在安全漏洞。攻击者可利用该漏洞造成拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2016-2120
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2016-2120
请登录查看更多情报信息。
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-2120x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2016-2120
Same Patch Batch · [UNKNOWN] · 2018-11-01 · 3 CVEs total
| CVE-2018-14660 | GlusterFS 资源管理错误漏洞 | |
| CVE-2016-2123 | Samba 缓冲区错误漏洞 |
IV. Related Vulnerabilities
Same weakness: CWE-190
- CVE-2026-7568
Signed integer overflow in metaphone() - CVE-2026-42311
Pillow: OOB Write with Invalid PSD Tile Extents (Integer Ove - CVE-2026-42308
Pillow: Integer overflow when processing fonts - CVE-2026-6664
PgBouncer integer overflow in PgBouncer network packet parsi - CVE-2026-42199
Grid: Integer Overflow in Grid::expand_rows Leads to Safe-AP
V. Comments for CVE-2016-2120
No comments yet