Lucene search

[email protected]CVE-2012-1193

HistoryFeb 17, 2012 - 10:55 p.m.

CVE-2012-1193

2012-02-1722:55:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2012-1193

powerdns recursor

pdns_recursor

server names

ttl values

ns records

remote attackers

revoked domain names

ghost domain names attack

nvd

6.2 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.006 Low

EPSS

Percentile

78.7%

JSON

The resolver in PowerDNS Recursor (aka pdns_recursor) 3.3 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a “ghost domain names” attack.

CPENameOperatorVersion
powerdns:powerdns_recursorpowerdns powerdns recursoreq3.3

CPE	Name	Operator	Version
powerdns:powerdns_recursor	powerdns powerdns recursor	eq	3.3

References

lists.fedoraproject.org/pipermail/package-announce/2013-April/102729.html

lists.fedoraproject.org/pipermail/package-announce/2013-May/104173.html

lists.fedoraproject.org/pipermail/package-announce/2013-May/104177.html

www.isc.org/files/imce/ghostdomain_camera.pdf

6.2 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.006 Low

EPSS

Percentile

78.7%

JSON

Related for CVE-2012-1193

openvas6 nessus5 ubuntucve1 prion1 fedora3 gentoo1