cbcvebase.
CVE-2012-1191
published 2012-02-17

CVE-2012-1191: The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to…

PriorityP429medium6.4CVSS 2.0
AVNACLAuNCNIPAP
EPSS
1.90%
77.1th percentile
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.

Affected

6 ranges
VendorProductVersion rangeFixed in
d.j.bernsteindjbdns
d.j.bernsteindjbdns>= 0 < 1:1.05-101:1.05-10
d.j.bernsteindjbdns>= 0 < 1:1.05-101:1.05-10
d.j.bernsteindjbdns>= 0 < 1:1.05-101:1.05-10
d.j.bernsteindjbdns>= 0 < 1:1.05-101:1.05-10
debiandjbdns< djbdns 1:1.05-10 (bookworm)djbdns 1:1.05-10 (bookworm)

CVSS provenance

nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:P
osv6.4MEDIUM
vendor_debian6.4MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.