4 matches found
CVE-2021-43105
Technitium DNS Server vulnerabilities: A bailiwick checking function flaw in versions ≤ 7.0 allows malicious users to inject NS records of any domain (even TLDs) into the cache, enabling DNS cache poisoning. The PT-2022-11786 entry and CNNVD/CVE references corroborate this, stating the impact as ...
CVE-2022-30257
The CVE-2022-30257 entry affects Technitium DNS Server (versions through 8.0.2). Concrete details from connected sources show a flaw where variant V1 allows unintended domain name resolution: a revoked domain name can remain resolvable for an extended period, including expired or taken-down domai...
CVE-2022-30258
Technitium DNS Server (v8.0.2 and earlier) is affected by CVE-2022-30258, which enables variant V2 of unintended domain name resolution where revoked domains remain resolvable for extended periods, including expired or withdrawn domains. This behavior conforms to de facto DNS practices and can le...
CVE-2022-48256
Summary: CVE-2022-48256 affects Technitium DNS Server versions prior to 10.0. A self-CNAME loop in the DNS response can cause the answer to contain hundreds of records, leading to a denial of service (availability impact). The issue is triggered by the CNAME handling logic and results in resource...