RSS   Podatności dla 'Knot resolver'   RSS

2020-05-19
 
CVE-2020-12667

CWE-400
 

 
Knot Resolver before 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.

 
2019-12-16
 
CVE-2019-19331

CWE-404
 

 
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A records can be squashed into one DNS message (limit is 64kB).

 
2019-11-05
 
CVE-2013-5661

CWE-290
 

 
Cache Poisoning issue exists in DNS Response Rate Limiting.

 

 >>> Vendor: NIC 2 Produkty
BIRD
Knot resolver


Copyright 2020, cxsecurity.com

 

Back to Top