Vulnerability CVE-2022-33989
Published: 2022-08-15

Description:
dproxy-nexgen (aka dproxy nexgen) uses a static UDP source port (selected randomly only at boot time) in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not enough entropy to prevent traffic injection attacks.

 References:
https://www.usenix.org/conference/usenixsecurity22/presentation/jeitner
https://sourceforge.net/projects/dproxy/
https://www.openwall.com/lists/oss-security/2022/08/14/3
Copyright 2026, cxsecurity.com

 

Back to Top