National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Keyword (text search): DjbDNS
  • Search Type: Search All
  • Contains Software Flaws (CVE)
There are 3 matching records.
Vuln ID Summary CVSS Severity
CVE-2012-1191

The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.

Published: February 17, 2012; 05:55:00 PM -05:00
V2: 6.4 MEDIUM
CVE-2009-0858

The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain.

Published: March 09, 2009; 05:30:00 PM -04:00
V2: 5.8 MEDIUM
CVE-2008-4392

dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority (SOA) query.

Published: February 19, 2009; 11:30:00 AM -05:00
V2: 6.4 MEDIUM