PowerDNS Recursor Cache Update Policy Can Be Bypassed to Allow Revoked Domain Names to Remain Resolvable
|
|
SecurityTracker Alert ID: 1026730 |
|
SecurityTracker URL: http://securitytracker.com/id/1026730
|
|
CVE Reference:
CVE-2012-1193
(Links to External Site)
|
Date: Feb 23 2012
|
Impact:
Modification of system information
|
|
Version(s): Recursor 3.3; possibly other versions
|
Description:
A vulnerability was reported in PowerDNS Recursor. A remote user can cause revoked domain names to remain resolvable.
A remote user can exploit a flaw in the DNS cache update policy to cause a revoked domain name to remain as resolvable after the domain name has been deleted from the domain registry and after the associated TTL has expired.
The original advisory was presented at NDSS 2012 ("Ghost Domain Names: Revoked Yet Still Resolvable").
Jian Jiang, Jinjin Liang, Kang Li, Jun Li, Haixin Duan, and Jianping Wu reported this vulnerability.
|
Impact:
A remote user can cause revoked domain names to remain resolvable.
|
Solution:
No solution was available at the time of this entry.
|
Vendor URL: powerdns.com/ (Links to External Site)
|
Cause:
State error
|
Underlying OS:
Linux (Any), UNIX (Any), Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 22 Feb 2012 20:42:39 +0000
Subject: PowerDNS
|
CVE-2012-1193
|
|
