DNS Resolver Vulnerability in D-Link DSL 2730-U and DIR-600M Devices
CVE-2020-13960

7.5HIGH

Key Information:

Vendor: D-Link
Status: Dsl-2730u Firmware
Vendor: CVE Published:; 8 June 2020

Summary

D-Link DSL 2730-U and DIR-600M devices are affected by a DNS resolver vulnerability that allows remote attackers to exploit the default DNS settings. Specifically, the presence of the domain.name string in the DNS search path enables attackers to return valid DNS responses for generally unreachable subdomains, effectively bypassing NXDOMAIN errors. This can lead to potential unauthorized access to services and exposure of sensitive information, highlighting the need for users to secure their devices by adjusting the DNS resolver settings.

References

https://harigovind.org/articles/who-is-hijacking-my-nxdom...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 8, 2020
Vulnerability Reserved
Jun 8, 2020