Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-sa8k-ybav-c3ax
Vulnerability ID VCID-sa8k-ybav-c3ax
Aliases CVE-2005-0038
Summary The DNS implementation of PowerDNS 2.9.16 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an infinite loop.
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
epss 0.00076 https://api.first.org/data/v1/epss?cve=CVE-2005-0038
cvssv2 5.0 https://nvd.nist.gov/vuln/detail/CVE-2005-0038
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2005-0038
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0038
http://www.niscc.gov.uk/niscc/docs/al-20050524-00433.html
http://www.niscc.gov.uk/niscc/docs/re-20050524-00432.pdf?lang=en
http://www.osvdb.org/25291
http://www.securityfocus.com/bid/13729
cpe:2.3:a:powerdns:powerdns:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:*:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.0_rc1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.0_rc1:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.8:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.0:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.1:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.10:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.11:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.11:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.12:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.12:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.13:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.13:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.14:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.14:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.15:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.15:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.2:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.3a:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.3a:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.4:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.5:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.6:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.7:*:*:*:*:*:*:*
cpe:2.3:a:powerdns:powerdns:2.9.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:powerdns:powerdns:2.9.8:*:*:*:*:*:*:*
CVE-2005-0038 https://nvd.nist.gov/vuln/detail/CVE-2005-0038
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2005-0038
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.22663
EPSS Score 0.00076
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T16:30:01.516713+00:00 Debian Oval Importer Import https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.0.0