CVE-2012-1570
Summary
| CVE | CVE-2012-1570 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2012-03-28 10:55:00 UTC |
| Updated | 2020-08-14 17:11:00 UTC |
| Description | The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 804770 – (CVE-2012-1570) CVE-2012-1570 maradns: deleted domain record cache persistance flaw | CONFIRM | bugzilla.redhat.com | Issue Tracking, Third Party Advisory |
| oss-security - Re: CVE request: maradns deleted domain record cache persistance flaw | MLIST | www.openwall.com | Mailing List, Third Party Advisory |
| 80192 | OSVDB | osvdb.org | Broken Link |
| MaraDNS - a small open-source DNS server | CONFIRM | www.maradns.org | Release Notes, Vendor Advisory |
| Security Alerts - Secunia | SECUNIA | secunia.com | Third Party Advisory |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | Third Party Advisory, VDB Entry |
| oss-security - CVE request: maradns deleted domain record cache persistance flaw | MLIST | www.openwall.com | Mailing List, Third Party Advisory |
| MaraDNS Cache Update Policy Can Be Bypassed to Allow Revoked Domain Names to Remain Resolvable - SecurityTracker | SECTRACK | www.securitytracker.com | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.