17 matches found
EUVD-2012-1220
Malware in sbrugna...
EUVD-2012-1071
Malware in sbrugna...
EUVD-2012-1588
Malware in sbrugna...
EUVD-2008-1804
Malware in sbrugna...
Akamai's DNS Contribution to Internet Resiliency
Background Akamai Technologies recently contributed its "Serve Stale" DNS algorithm to Version 9 of the Internet Systems Consortium's ISC Berkeley Internet Name Domain BIND open source Domain Name System DNS project. As the Internet's most widely used DNS implementation, BIND operates ubiquitousl...
F5 Networks BIG-IP : BIND vulnerability (SOL15481)
The resolver in ISC BIND 9 through 9.8.1-P1 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a 'ghost domain names' attack. CVE-2012-10...
CVE-2012-1570
The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain name...
CVE-2012-1193
The resolver in PowerDNS Recursor aka pdnsrecursor 3.3 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack...
CVE-2012-1192
The resolver in Unbound before 1.4.11 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack...
CVE-2012-1191
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names"...
CVE-2012-1193
PowerDNS Recursor (pdns_recursor) vulnerable to a ghost domain names attack in version 3.3 (and related 3.3.x/3.4.x/3.5 RC1 ranges noted in public advisories). The issue occurs when processing an A-record response: the resolver overwrites cached NS records and TTL values, enabling a remote attack...
CVE-2012-1192
The resolver in Unbound before 1.4.11 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack...
CVE-2012-1191
CVE-2012-1191 affects the dns resolver in djbdns’s dnscache (version 1.05). The vulnerability arises when processing an A record response, where the resolver overwrites cached NS record names and TTLs, enabling a ghost-domain names attack that can keep revoked domains resolvable. The issue is doc...
CVE-2012-1033
The resolver in ISC BIND 9 through 9.8.1-P1 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack...
Mandriva Security Advisory MDVSA-2009:259-1 (snort)
The remote host is missing an update to snort announced via advisory MDVSA-2009:259-1. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
CVE-2008-1804
preprocessors/sppfrag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by using a different TTL for each fragment...
CVE-2008-1804
preprocessors/sppfrag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by using a different TTL for each fragment...