Lucene search
+L

7 matches found

Cvelist
Cvelist
added yesterday27 views

CVE-2026-62299 CoreDNS: rewrite-plugin EDNS0 response-revert nil-pointer panic (remote DoS) when a downstream plugin returns a response with no OPT record

CoreDNS is a DNS server written in Go. Prior to 1.14.5, the CoreDNS rewrite plugin supports edns0 rewrite rules with an optional revert flag, and two response rules, edns0SetResponseRule and edns0ReplaceResponseRuleT in plugin/rewrite/edns0.go, call res.IsEdns0 and immediately dereference the...

5.3CVSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/25 12:24 p.m.8 views

CVE-2026-42004

An attacker can send a crafted EDNS OPT record that will be ignored by DNSdist’s filtering rules, but will be rewritten as a valid OPT record when EDNS Client Subnet is inserted, causing the backend to see the EDNS options that DNSdist did not filter...

3.7CVSS5.9AI score0.00162EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2026/05/26 5:9 a.m.15 views

dnsmasq: Broken ECS source validation bypass

A validation bypass was discovered in dnsmasq's RFC 7871 client subnet ECS handling. When verifying ECS source information in DNS responses, dnsmasq passes the OPT record length instead of the full packet length to the validation function.This causes all internal bounds checks to fail, completely...

5.3CVSS5.8AI score0.02681EPSS
Exploits2References5
GithubExploit
GithubExploit
added 2026/05/24 2:23 p.m.112 views

Exploit for Heap-based Buffer Overflow in Microsoft

CVE-2026-41096 - Crash PoC Heap overflow in DnsRawTruncateMe...

9.8CVSS6.1AI score0.01932EPSS
Exploits4
SUSE CVE
SUSE CVE
added 2023/02/15 4:58 a.m.5 views

SUSE CVE-2016-7069

An issue has been found in dnsdist before 1.2.0 in the way EDNS0 OPT records are handled when parsing responses from a backend. When dnsdist is configured to add EDNS Client Subnet to a query, the response may contain an EDNS0 OPT record that has to be removed before forwarding the response to th...

7.5CVSS6.8AI score0.0458EPSS
Exploits0References6
OSV
OSV
added 2016/10/21 10:59 a.m.5 views

DEBIAN-CVE-2016-2848

ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service assertion failure and daemon exit via malformed options data in an OPT resource record...

7.5CVSS7.3AI score0.25772EPSS
Exploits0References1
exploitpack
exploitpack
added 2002/11/12 12:0 a.m.14 views

ISC BIND 8.3.x - OPT Record Large UDP Denial of Service

ISC BIND 8.3.x - OPT Record Large UDP Denial of Service // source: https://www.securityfocus.com/bid/6161/info ISC BIND is vulnerable to a denial of service attack. When a DNS lookup is requested on a non-existant sub-domain of a valid domain and an OPT resource record with a large UDP payload is...

Exploits0
Rows per page
Query Builder