bind: Cache poisoning attacks with unsolicited RRs

A vulnerability exists in BIND’s DNS resolver logic that makes it overly permissive when accepting resource records RRs in responses. Under certain conditions, this flaw allows attackers to inject unsolicited or forged DNS records into the cache. This can be exploited to poison the resolver cache...

bind: Cache poisoning attacks with unsolicited RRs

A vulnerability exists in BIND’s DNS resolver logic that makes it overly permissive when accepting resource records RRs in responses. Under certain conditions, this flaw allows attackers to inject unsolicited or forged DNS records into the cache. This can be exploited to poison the resolver cache...

bind: Cache poisoning attacks with unsolicited RRs

A vulnerability exists in BIND’s DNS resolver logic that makes it overly permissive when accepting resource records RRs in responses. Under certain conditions, this flaw allows attackers to inject unsolicited or forged DNS records into the cache. This can be exploited to poison the resolver cache...

PT-2024-26400 · Mit · Mit Identibot

Name of the Vulnerable Software and Affected Versions: MIT IdentiBot versions prior to commit 48e3e5e7ead6777fa75d57c7711c8e55b501c24e Description: A vulnerability in MIT IdentiBot, an open-source Discord bot, allows unauthorized access to sensitive information about Discord users who have verifi...

Cisco Nexus 9000 Series Fabric Switches Access Control Error Vulnerability

Cisco Nexus 9000 Series Fabric Switches is a 9000 series fiber optic switch from Cisco USA. An access control error vulnerability exists in the process of establishing fabric infrastructure VLAN links in Cisco Nexus 9000 Series Fabric Switches in ACI mode. An attacker could exploit this...