CVE-2012-1570 in MaraDNSinfo

Summary

The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

03/12/2012

Disclosure

03/28/2012

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-20

CVSS

6.5

EPSS

0.00660

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-1570
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-1570
CVE Details	https://www.cvedetails.com/cve/CVE-2012-1570/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!