Lucene search

K
ubuntucveUbuntu.comUB:CVE-2012-1570
HistoryMar 28, 2012 - 12:00 a.m.

CVE-2012-1570

2012-03-2800:00:00
ubuntu.com
ubuntu.com
5

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

75.2%

The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12
overwrites cached server names and TTL values in NS records during the
processing of a response to an A record query, which allows remote
attackers to trigger continued resolvability of revoked domain names via a
“ghost domain names” attack.

Bugs

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

75.2%

Related for UB:CVE-2012-1570