EUVD-2016-7107

Malware in sbrugna...

CVE-2017-15908

CVE-2017-15908 affects systemd 223–235 where a remote DNS server can reply with a crafted DNS NSEC RR to trigger an infinite loop in dns_packet_read_type_window() of systemd-resolved, causing DoS. Public advisories (Ubuntu USN-3558-1) reference CVE-2017-15908; related OpenVAS/Nessus entries docum...

UBUNTU-CVE-2017-15908

In systemd 223 through 235, a remote DNS server can respond with a custom crafted DNS NSEC resource record to trigger an infinite loop in the dnspacketreadtypewindow function of the 'systemd-resolved' service and cause a DoS of the affected service...

DNS Server Dynamic Update Record Injection

This module allows adding and/or deleting a record to any remote DNS server that allows unrestricted dynamic updates. -- coding: binary -- This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'dnsruby' class...

MS07-062: Vulnerability in DNS Could Allow Spoofing (941672)

The remote host has the Windows DNS server installed. There is a flaw in the remote version of this server that could allow an attacker to spoof DNS responses. By exploiting this flaw, an attacker may be able to redirect legitimate traffic from other systems that could allow him to construct more...

Symantec Enterprise Firewall 7.08.0 - DNSD DNS Cache Poisoning

Symantec Enterprise Firewall 7.08.0 - DNSD DNS Cache Poisoning source: https://www.securityfocus.com/bid/10557/info It is reported that dnsd is prone to a cache poisoning vulnerability. Dnsd does not ensure that the data returned from a remote DNS server contains related information about the...

DNS Server Recursive Query Cache Poisoning Weakness

It is possible to query the remote name server for third-party names. If this is your internal nameserver, then the attack vector may be limited to employees or guest access if allowed. If you are probing a remote nameserver, then it allows anyone to use it to resolve third party names such as...