Search
Find a vulnerability
Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
6 vulnerabilities by d.j.bernstein
CVE-2012-1191 (GCVE-0-2012-1191)
Vulnerability from nvd – Published: 2012-02-17 22:00 – Updated: 2024-09-16 17:23
VLAI
Summary
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.isc.org/files/imce/ghostdomain_camera.pdf | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T18:53:36.581Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.isc.org/files/imce/ghostdomain_camera.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a \"ghost domain names\" attack."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2012-02-17T22:00:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.isc.org/files/imce/ghostdomain_camera.pdf"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2012-1191",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a \"ghost domain names\" attack."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.isc.org/files/imce/ghostdomain_camera.pdf",
"refsource": "MISC",
"url": "https://www.isc.org/files/imce/ghostdomain_camera.pdf"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2012-1191",
"datePublished": "2012-02-17T22:00:00.000Z",
"dateReserved": "2012-02-17T00:00:00.000Z",
"dateUpdated": "2024-09-16T17:23:51.903Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2009-0858 (GCVE-0-2009-0858)
Vulnerability from nvd – Published: 2009-03-09 21:00 – Updated: 2024-08-07 04:48
VLAI
Summary
The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
11 references
| URL | Tags |
|---|---|
| http://secunia.com/advisories/35820 | third-party-advisoryx_refsource_SECUNIA |
| http://www.securityfocus.com/archive/1/501340/100… | mailing-listx_refsource_BUGTRAQ |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.securityfocus.com/archive/1/501479/100… | mailing-listx_refsource_BUGTRAQ |
| http://securityandthe.net/2009/03/05/security-iss… | x_refsource_MISC |
| http://www.debian.org/security/2009/dsa-1831 | vendor-advisoryx_refsource_DEBIAN |
| http://marc.info/?l=djbdns&m=123613000920446&w=2 | mailing-listx_refsource_MLIST |
| http://www.securityfocus.com/bid/33937 | vdb-entryx_refsource_BID |
| http://www.securityfocus.com/archive/1/501294/100… | mailing-listx_refsource_BUGTRAQ |
| http://marc.info/?l=djbdns&m=123554945710038 | mailing-listx_refsource_MLIST |
| http://it.slashdot.org/article.pl?sid=09/03/05/2014249 | x_refsource_MISC |
Date Public
2009-02-25 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T04:48:52.593Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "35820",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/35820"
},
{
"name": "20090228 Re: djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/501340/100/0/threaded"
},
{
"name": "djbdns-response-packet-spoofing(49003)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/49003"
},
{
"name": "20090305 Re: djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/501479/100/0/threaded"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/"
},
{
"name": "DSA-1831",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2009/dsa-1831"
},
{
"name": "[dns] 20090304 djbdns\u003c=1.05 lets AXFRed subdomains overwrite domains",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=djbdns\u0026m=123613000920446\u0026w=2"
},
{
"name": "33937",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/33937"
},
{
"name": "20090226 djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/501294/100/0/threaded"
},
{
"name": "[dns] 20090225 djbdns misformats some long response packets; patch and example",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=djbdns\u0026m=123554945710038"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://it.slashdot.org/article.pl?sid=09/03/05/2014249"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-02-25T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-10T18:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "35820",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/35820"
},
{
"name": "20090228 Re: djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/501340/100/0/threaded"
},
{
"name": "djbdns-response-packet-spoofing(49003)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/49003"
},
{
"name": "20090305 Re: djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/501479/100/0/threaded"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/"
},
{
"name": "DSA-1831",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2009/dsa-1831"
},
{
"name": "[dns] 20090304 djbdns\u003c=1.05 lets AXFRed subdomains overwrite domains",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=djbdns\u0026m=123613000920446\u0026w=2"
},
{
"name": "33937",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/33937"
},
{
"name": "20090226 djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/501294/100/0/threaded"
},
{
"name": "[dns] 20090225 djbdns misformats some long response packets; patch and example",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=djbdns\u0026m=123554945710038"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://it.slashdot.org/article.pl?sid=09/03/05/2014249"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2009-0858",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "35820",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35820"
},
{
"name": "20090228 Re: djbdns misformats some long response packets; patch and example attack",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/501340/100/0/threaded"
},
{
"name": "djbdns-response-packet-spoofing(49003)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/49003"
},
{
"name": "20090305 Re: djbdns misformats some long response packets; patch and example attack",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/501479/100/0/threaded"
},
{
"name": "http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/",
"refsource": "MISC",
"url": "http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/"
},
{
"name": "DSA-1831",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2009/dsa-1831"
},
{
"name": "[dns] 20090304 djbdns\u003c=1.05 lets AXFRed subdomains overwrite domains",
"refsource": "MLIST",
"url": "http://marc.info/?l=djbdns\u0026m=123613000920446\u0026w=2"
},
{
"name": "33937",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/33937"
},
{
"name": "20090226 djbdns misformats some long response packets; patch and example attack",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/501294/100/0/threaded"
},
{
"name": "[dns] 20090225 djbdns misformats some long response packets; patch and example",
"refsource": "MLIST",
"url": "http://marc.info/?l=djbdns\u0026m=123554945710038"
},
{
"name": "http://it.slashdot.org/article.pl?sid=09/03/05/2014249",
"refsource": "MISC",
"url": "http://it.slashdot.org/article.pl?sid=09/03/05/2014249"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2009-0858",
"datePublished": "2009-03-09T21:00:00.000Z",
"dateReserved": "2009-03-09T00:00:00.000Z",
"dateUpdated": "2024-08-07T04:48:52.593Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-4392 (GCVE-0-2008-4392)
Vulnerability from nvd – Published: 2009-02-19 16:00 – Updated: 2024-08-07 10:17
VLAI
Summary
dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority (SOA) query.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
5 references
| URL | Tags |
|---|---|
| http://www.your.org/dnscache/djbdns.pdf | x_refsource_MISC |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://secunia.com/advisories/33855 | third-party-advisoryx_refsource_SECUNIA |
| http://www.securityfocus.com/bid/33818 | vdb-entryx_refsource_BID |
| http://www.your.org/dnscache/ | x_refsource_MISC |
Date Public
2009-02-18 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T10:17:09.645Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.your.org/dnscache/djbdns.pdf"
},
{
"name": "djbdns-soa-spoofing(48807)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48807"
},
{
"name": "33855",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/33855"
},
{
"name": "33818",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/33818"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.your.org/dnscache/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-02-18T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority (SOA) query."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-07T12:57:01.000Z",
"orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
"shortName": "certcc"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.your.org/dnscache/djbdns.pdf"
},
{
"name": "djbdns-soa-spoofing(48807)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48807"
},
{
"name": "33855",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/33855"
},
{
"name": "33818",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/33818"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.your.org/dnscache/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cert@cert.org",
"ID": "CVE-2008-4392",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority (SOA) query."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.your.org/dnscache/djbdns.pdf",
"refsource": "MISC",
"url": "http://www.your.org/dnscache/djbdns.pdf"
},
{
"name": "djbdns-soa-spoofing(48807)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48807"
},
{
"name": "33855",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/33855"
},
{
"name": "33818",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/33818"
},
{
"name": "http://www.your.org/dnscache/",
"refsource": "MISC",
"url": "http://www.your.org/dnscache/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
"assignerShortName": "certcc",
"cveId": "CVE-2008-4392",
"datePublished": "2009-02-19T16:00:00.000Z",
"dateReserved": "2008-10-02T00:00:00.000Z",
"dateUpdated": "2024-08-07T10:17:09.645Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2012-1191 (GCVE-0-2012-1191)
Vulnerability from cvelistv5 – Published: 2012-02-17 22:00 – Updated: 2024-09-16 17:23
VLAI
Summary
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.isc.org/files/imce/ghostdomain_camera.pdf | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T18:53:36.581Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.isc.org/files/imce/ghostdomain_camera.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a \"ghost domain names\" attack."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2012-02-17T22:00:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.isc.org/files/imce/ghostdomain_camera.pdf"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2012-1191",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a \"ghost domain names\" attack."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.isc.org/files/imce/ghostdomain_camera.pdf",
"refsource": "MISC",
"url": "https://www.isc.org/files/imce/ghostdomain_camera.pdf"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2012-1191",
"datePublished": "2012-02-17T22:00:00.000Z",
"dateReserved": "2012-02-17T00:00:00.000Z",
"dateUpdated": "2024-09-16T17:23:51.903Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2009-0858 (GCVE-0-2009-0858)
Vulnerability from cvelistv5 – Published: 2009-03-09 21:00 – Updated: 2024-08-07 04:48
VLAI
Summary
The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
11 references
| URL | Tags |
|---|---|
| http://secunia.com/advisories/35820 | third-party-advisoryx_refsource_SECUNIA |
| http://www.securityfocus.com/archive/1/501340/100… | mailing-listx_refsource_BUGTRAQ |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.securityfocus.com/archive/1/501479/100… | mailing-listx_refsource_BUGTRAQ |
| http://securityandthe.net/2009/03/05/security-iss… | x_refsource_MISC |
| http://www.debian.org/security/2009/dsa-1831 | vendor-advisoryx_refsource_DEBIAN |
| http://marc.info/?l=djbdns&m=123613000920446&w=2 | mailing-listx_refsource_MLIST |
| http://www.securityfocus.com/bid/33937 | vdb-entryx_refsource_BID |
| http://www.securityfocus.com/archive/1/501294/100… | mailing-listx_refsource_BUGTRAQ |
| http://marc.info/?l=djbdns&m=123554945710038 | mailing-listx_refsource_MLIST |
| http://it.slashdot.org/article.pl?sid=09/03/05/2014249 | x_refsource_MISC |
Date Public
2009-02-25 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T04:48:52.593Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "35820",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/35820"
},
{
"name": "20090228 Re: djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/501340/100/0/threaded"
},
{
"name": "djbdns-response-packet-spoofing(49003)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/49003"
},
{
"name": "20090305 Re: djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/501479/100/0/threaded"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/"
},
{
"name": "DSA-1831",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2009/dsa-1831"
},
{
"name": "[dns] 20090304 djbdns\u003c=1.05 lets AXFRed subdomains overwrite domains",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=djbdns\u0026m=123613000920446\u0026w=2"
},
{
"name": "33937",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/33937"
},
{
"name": "20090226 djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/501294/100/0/threaded"
},
{
"name": "[dns] 20090225 djbdns misformats some long response packets; patch and example",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=djbdns\u0026m=123554945710038"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://it.slashdot.org/article.pl?sid=09/03/05/2014249"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-02-25T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-10T18:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "35820",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/35820"
},
{
"name": "20090228 Re: djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/501340/100/0/threaded"
},
{
"name": "djbdns-response-packet-spoofing(49003)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/49003"
},
{
"name": "20090305 Re: djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/501479/100/0/threaded"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/"
},
{
"name": "DSA-1831",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2009/dsa-1831"
},
{
"name": "[dns] 20090304 djbdns\u003c=1.05 lets AXFRed subdomains overwrite domains",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=djbdns\u0026m=123613000920446\u0026w=2"
},
{
"name": "33937",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/33937"
},
{
"name": "20090226 djbdns misformats some long response packets; patch and example attack",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/501294/100/0/threaded"
},
{
"name": "[dns] 20090225 djbdns misformats some long response packets; patch and example",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=djbdns\u0026m=123554945710038"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://it.slashdot.org/article.pl?sid=09/03/05/2014249"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2009-0858",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "35820",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35820"
},
{
"name": "20090228 Re: djbdns misformats some long response packets; patch and example attack",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/501340/100/0/threaded"
},
{
"name": "djbdns-response-packet-spoofing(49003)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/49003"
},
{
"name": "20090305 Re: djbdns misformats some long response packets; patch and example attack",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/501479/100/0/threaded"
},
{
"name": "http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/",
"refsource": "MISC",
"url": "http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/"
},
{
"name": "DSA-1831",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2009/dsa-1831"
},
{
"name": "[dns] 20090304 djbdns\u003c=1.05 lets AXFRed subdomains overwrite domains",
"refsource": "MLIST",
"url": "http://marc.info/?l=djbdns\u0026m=123613000920446\u0026w=2"
},
{
"name": "33937",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/33937"
},
{
"name": "20090226 djbdns misformats some long response packets; patch and example attack",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/501294/100/0/threaded"
},
{
"name": "[dns] 20090225 djbdns misformats some long response packets; patch and example",
"refsource": "MLIST",
"url": "http://marc.info/?l=djbdns\u0026m=123554945710038"
},
{
"name": "http://it.slashdot.org/article.pl?sid=09/03/05/2014249",
"refsource": "MISC",
"url": "http://it.slashdot.org/article.pl?sid=09/03/05/2014249"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2009-0858",
"datePublished": "2009-03-09T21:00:00.000Z",
"dateReserved": "2009-03-09T00:00:00.000Z",
"dateUpdated": "2024-08-07T04:48:52.593Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-4392 (GCVE-0-2008-4392)
Vulnerability from cvelistv5 – Published: 2009-02-19 16:00 – Updated: 2024-08-07 10:17
VLAI
Summary
dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority (SOA) query.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
5 references
| URL | Tags |
|---|---|
| http://www.your.org/dnscache/djbdns.pdf | x_refsource_MISC |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://secunia.com/advisories/33855 | third-party-advisoryx_refsource_SECUNIA |
| http://www.securityfocus.com/bid/33818 | vdb-entryx_refsource_BID |
| http://www.your.org/dnscache/ | x_refsource_MISC |
Date Public
2009-02-18 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T10:17:09.645Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.your.org/dnscache/djbdns.pdf"
},
{
"name": "djbdns-soa-spoofing(48807)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48807"
},
{
"name": "33855",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/33855"
},
{
"name": "33818",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/33818"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.your.org/dnscache/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-02-18T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority (SOA) query."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-07T12:57:01.000Z",
"orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
"shortName": "certcc"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.your.org/dnscache/djbdns.pdf"
},
{
"name": "djbdns-soa-spoofing(48807)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48807"
},
{
"name": "33855",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/33855"
},
{
"name": "33818",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/33818"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.your.org/dnscache/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cert@cert.org",
"ID": "CVE-2008-4392",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority (SOA) query."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.your.org/dnscache/djbdns.pdf",
"refsource": "MISC",
"url": "http://www.your.org/dnscache/djbdns.pdf"
},
{
"name": "djbdns-soa-spoofing(48807)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48807"
},
{
"name": "33855",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/33855"
},
{
"name": "33818",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/33818"
},
{
"name": "http://www.your.org/dnscache/",
"refsource": "MISC",
"url": "http://www.your.org/dnscache/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
"assignerShortName": "certcc",
"cveId": "CVE-2008-4392",
"datePublished": "2009-02-19T16:00:00.000Z",
"dateReserved": "2008-10-02T00:00:00.000Z",
"dateUpdated": "2024-08-07T10:17:09.645Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}