CVE-2012-1570Maradns vulnerability

5 documents5 sources
Severity
4.3MEDIUMNVD
EPSS
0.7%
top 28.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
MaradnsDebian Maradns
Timeline
PublishedMar 28
Latest updateMay 13

Description

The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages3 packages

debiandebian/maradns< maradns 1.4.12-1 (bullseye)
NVDmaradns/maradns1.4.01.4.12+1
Debianmaradns/maradns< 1.4.12-1

🔴Vulnerability Details

2
GHSA
GHSA-v2q2-mfxj-3q9c: The resolver in MaraDNS before 12022-05-13
OSV
CVE-2012-1570: The resolver in MaraDNS before 12012-03-28

📋Vendor Advisories

1
Debian
CVE-2012-1570: maradns - The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cac...2012

💬Community

1
Bugzilla
CVE-2012-1570 maradns: deleted domain record cache persistance flaw2012-03-19
CVE-2012-1570 — Maradns vulnerability | cvebase