Input validation error in MaraDNS - CVE-2012-1570
Published: March 28, 2012 / Updated: August 11, 2020
Vulnerability identifier: #VU44181
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2012-1570
CWE-ID: CWE-20
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Sam Trenholme
Affected software:
MaraDNS
MaraDNS
Detailed vulnerability description
The vulnerability allows a remote non-authenticated attacker to manipulate or delete data.
The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.
How to mitigate CVE-2012-1570
Install update from vendor's website.
Sources
- http://osvdb.org/80192
- http://secunia.com/advisories/48492
- http://www.maradns.org/changelog.html
- http://www.openwall.com/lists/oss-security/2012/03/20/1
- http://www.openwall.com/lists/oss-security/2012/03/20/10
- http://www.securitytracker.com/id?1026821
- https://bugzilla.redhat.com/show_bug.cgi?id=804770
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74119