Vulnerability Description
The resolver in PowerDNS Recursor (aka pdns_recursor) 3.3 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Powerdns | Powerdns Recursor | 3.3 |
References
- http://lists.fedoraproject.org/pipermail/package-announce/2013-April/102729.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-May/104173.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-May/104177.html
- https://www.isc.org/files/imce/ghostdomain_camera.pdfExploit
- http://lists.fedoraproject.org/pipermail/package-announce/2013-April/102729.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-May/104173.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-May/104177.html
- https://www.isc.org/files/imce/ghostdomain_camera.pdfExploit
FAQ
What is CVE-2012-1193?
CVE-2012-1193 is a vulnerability with a CVSS score of 6.4 (MEDIUM). The resolver in PowerDNS Recursor (aka pdns_recursor) 3.3 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote atta...
How severe is CVE-2012-1193?
CVE-2012-1193 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-1193?
Check the references section above for vendor advisories and patch information. Affected products include: Powerdns Powerdns Recursor.