CVE-2020-13960 — HIGH (7.5)

Vulnerability Description

D-Link DSL 2730-U IN_1.10 and IN_1.11 and DIR-600M 3.04 devices have the domain.name string in the DNS resolver search path by default, which allows remote attackers to provide valid DNS responses (and also offer Internet services such as HTTP) for names that otherwise would have had an NXDOMAIN error, by registering a subdomain of the domain.name domain name.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Dlink	Dsl-2730U Firmware	in_1.10
Dlink	Dsl-2730U	-
Dlink	Dir-600M Firmware	3.04
Dlink	Dir-600M	-

References

https://harigovind.org/articles/who-is-hijacking-my-nxdomains/ExploitThird Party Advisory
https://harigovind.org/articles/who-is-hijacking-my-nxdomains/ExploitThird Party Advisory

FAQ

What is CVE-2020-13960?

CVE-2020-13960 is a vulnerability with a CVSS score of 7.5 (HIGH). D-Link DSL 2730-U IN_1.10 and IN_1.11 and DIR-600M 3.04 devices have the domain.name string in the DNS resolver search path by default, which allows remote attackers to provide valid DNS responses (an...

How severe is CVE-2020-13960?

CVE-2020-13960 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-13960?

Check the references section above for vendor advisories and patch information. Affected products include: Dlink Dsl-2730U Firmware, Dlink Dsl-2730U, Dlink Dir-600M Firmware, Dlink Dir-600M.