DNS Response Issue in Cisco Content Service Switches
CVE-2003-1132

Currently unrated

Key Information:

Vendor: Cisco
Status: Content Services Switch 11500; Content Services Switch 11000
Vendor: CVE Published:; 31 December 2003

Summary

The DNS server functionality in Cisco Content Service Switch (CSS) 11000 and 11500 exhibits a flaw where, when queried for a nonexistent AAAA record, it returns an NXDOMAIN response instead of a No Error response. This behavior can be exploited by remote attackers to prompt other DNS servers to forward and cache a nonexistent AAAA record request, effectively leading to a denial of service. As a result, legitimate users may face inaccessible domains, impacting service availability.

References

http://www.cisco.com/warp/public/707/cisco-sa-20030430-dn...

vendor-advisoryx_refsource_CISCO

http://www.kb.cert.org/vuls/id/714121

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2003