Vulnerability Description
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| D.J.Bernstein | Djbdns | 1.05 |
Related Weaknesses (CWE)
References
- https://www.isc.org/files/imce/ghostdomain_camera.pdfExploit
- https://www.isc.org/files/imce/ghostdomain_camera.pdfExploit
FAQ
What is CVE-2012-1191?
CVE-2012-1191 is a vulnerability with a CVSS score of 6.4 (MEDIUM). The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote at...
How severe is CVE-2012-1191?
CVE-2012-1191 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-1191?
Check the references section above for vendor advisories and patch information. Affected products include: D.J.Bernstein Djbdns.