Vulnerability Description
The read_config_file function in lib/hesiod.c in Hesiod 3.2.1 falls back to the ".athena.mit.edu" default domain when opening the configuration file fails, which allows remote attackers to gain root privileges by poisoning the DNS cache.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hesiod Project | Hesiod | <= 3.2.1 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2017/01/21/1Mailing ListPatchThird Party Advisory
- http://www.securityfocus.com/bid/90952Third Party AdvisoryVDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=1332493Issue Tracking
- https://github.com/achernya/hesiod/pull/10Issue TrackingPatchThird Party Advisory
- https://security.gentoo.org/glsa/201805-01
- http://www.openwall.com/lists/oss-security/2017/01/21/1Mailing ListPatchThird Party Advisory
- http://www.securityfocus.com/bid/90952Third Party AdvisoryVDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=1332493Issue Tracking
- https://github.com/achernya/hesiod/pull/10Issue TrackingPatchThird Party Advisory
- https://security.gentoo.org/glsa/201805-01
FAQ
What is CVE-2016-10152?
CVE-2016-10152 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The read_config_file function in lib/hesiod.c in Hesiod 3.2.1 falls back to the ".athena.mit.edu" default domain when opening the configuration file fails, which allows remote attackers to gain root p...
How severe is CVE-2016-10152?
CVE-2016-10152 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2016-10152?
Check the references section above for vendor advisories and patch information. Affected products include: Hesiod Project Hesiod.