Vulnerability in PowerDNS Recursor Server Name Caching
CVE-2012-1193

Currently unrated

Key Information:

Vendor: Powerdns
Status: Powerdns Recursor
Vendor: CVE Published:; 17 February 2012

Summary

The PowerDNS Recursor 3.3 features a flaw in its resolver logic that enables remote attackers to exploit the caching mechanism. During the processing of responses to A record queries, the resolver incorrectly overwrites cached server names and time-to-live (TTL) values associated with NS records. This vulnerability poses a risk by allowing the continuance of resolvability for revoked domain names, which can lead to unauthorized access or misdirection, exemplified by a method commonly referred to as a 'ghost domain names' attack.

References

https://www.isc.org/files/imce/ghostdomain_camera.pdf

x_refsource_MISC

http://lists.fedoraproject.org/pipermail/package-announce...

vendor-advisoryx_refsource_FEDORA

http://lists.fedoraproject.org/pipermail/package-announce...

vendor-advisoryx_refsource_FEDORA

Timeline

Vulnerability published
Feb 17, 2012
Vulnerability Reserved
Feb 17, 2012