2 matches found
RHEL 7 : dnsmasq (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dnsmasq: fixed outgoing port used when --server is used with an interface name CVE-2021-3448 - A...
dnsmasq: fixed outgoing port used when --server is used with an interface name
A flaw was found in dnsmasq. When configured to use a specific server for a given network interface, dnsmasq uses a fixed port while forwarding queries. An attacker on the network, able to find the outgoing port used by dnsmasq, only needs to guess the random transmission ID to forge a reply and...