CVE-2012-1570 - OpenCVE

The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Maradns	Maradns

Configuration 1 [-]

OR	cpe:2.3:a:maradns:maradns::::::::
	cpe:2.3:a:maradns:maradns::::::::

No data.

References

Link	Providers
http://osvdb.org/80192
http://secunia.com/advisories/48492
http://www.maradns.org/changelog.html
http://www.openwall.com/lists/oss-security/2012/03/20/1
http://www.openwall.com/lists/oss-security/2012/03/20/10
http://www.securitytracker.com/id?1026821
https://bugzilla.redhat.com/show_bug.cgi?id=804770
https://exchange.xforce.ibmcloud.com/vulnerabilities/74119

History

No history.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2012-03-28T10:00:00

Updated: 2024-08-06T19:01:02.621Z

Reserved: 2012-03-12T00:00:00

Link: CVE-2012-1570

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2012-03-28T10:55:00.317

Modified: 2020-08-14T17:11:18.473

Link: CVE-2012-1570

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-03-19T00:00:00", "descriptions": [{"lang": "en", "value": "The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a \"ghost domain names\" attack."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-12-12T19:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "[oss-security] 20120320 Re: CVE request: maradns deleted domain record cache persistance flaw", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2012/03/20/10"}, {"name": "maradns-domain-spoofing(74119)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/74119"}, {"name": "[oss-security] 20120319 CVE request: maradns deleted domain record cache persistance flaw", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2012/03/20/1"}, {"name": "48492", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/48492"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=804770"}, {"name": "80192", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/80192"}, {"name": "1026821", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1026821"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.maradns.org/changelog.html"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T19:01:02.621Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20120320 Re: CVE request: maradns deleted domain record cache persistance flaw", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2012/03/20/10"}, {"name": "maradns-domain-spoofing(74119)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/74119"}, {"name": "[oss-security] 20120319 CVE request: maradns deleted domain record cache persistance flaw", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2012/03/20/1"}, {"name": "48492", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/48492"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=804770"}, {"name": "80192", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/80192"}, {"name": "1026821", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1026821"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.maradns.org/changelog.html"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2012-1570", "datePublished": "2012-03-28T10:00:00", "dateReserved": "2012-03-12T00:00:00", "dateUpdated": "2024-08-06T19:01:02.621Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:maradns:maradns:*:*:*:*:*:*:*:*", "matchCriteriaId": "D37FA9BB-A29F-4309-A5CB-A37FA16E4429", "versionEndExcluding": "1.3.07.15", "vulnerable": true}, {"criteria": "cpe:2.3:a:maradns:maradns:*:*:*:*:*:*:*:*", "matchCriteriaId": "5ABC747D-B7F0-4463-ACB4-C47AA6D73C7D", "versionEndExcluding": "1.4.12", "versionStartIncluding": "1.4.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a \"ghost domain names\" attack."}, {"lang": "es", "value": "La resoluci\u00f3n en MaraDNS antes de v1.3.0.7.15 y v1.4.x antes de v1.4.12 sobrescribe los nombres de cach\u00e9 del servidor y los valores TTL en los registros NS durante la tramitaci\u00f3n de una respuesta a una consulta de registro A, lo que permite a atacantes remotos provocar resoluci\u00f3n continua de nombres de dominio revocados a trav\u00e9s de un de ataque de \"nombres de dominio fantasmas."}], "id": "CVE-2012-1570", "lastModified": "2020-08-14T17:11:18.473", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2012-03-28T10:55:00.317", "references": [{"source": "secalert@redhat.com", "tags": ["Broken Link"], "url": "http://osvdb.org/80192"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/48492"}, {"source": "secalert@redhat.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "http://www.maradns.org/changelog.html"}, {"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2012/03/20/1"}, {"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2012/03/20/10"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id?1026821"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=804770"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/74119"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}