Lucene search

[email protected]CVE-2012-1191

HistoryFeb 17, 2012 - 10:55 p.m.

CVE-2012-1191

2012-02-1722:55:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2012-1191

resolver

dnscache

daniel j. bernstein

djbdns

ns records

ttl values

remote attackers

domain names

ghost domain names

attack

nvd

6.4 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.002 Low

EPSS

Percentile

58.6%

JSON

The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a “ghost domain names” attack.

CPENameOperatorVersion
d.j.bernstein:djbdnsd.j.bernstein djbdnseq1.05

CPE	Name	Operator	Version
d.j.bernstein:djbdns	d.j.bernstein djbdns	eq	1.05

References

www.isc.org/files/imce/ghostdomain_camera.pdf

6.4 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.002 Low

EPSS

Percentile

58.6%

JSON

Related for CVE-2012-1191

fedora3 prion1 nessus3 debiancve1 ubuntucve1