Misinterpretation of special domain name characters in DNRD (aka Domain Name Relay Daemon) 2.20.3 leads to cache poisoning because domain names and their associated IP addresses are cached in their misinterpreted form.
References
Link | Resource |
---|---|
http://dnrd.sourceforge.net/ | Product Third Party Advisory |
https://www.openwall.com/lists/oss-security/2022/08/14/1 | Mailing List Third Party Advisory |
https://www.usenix.org/conference/usenixsecurity21/presentation/jeitner | Third Party Advisory |
https://www.usenix.org/conference/usenixsecurity22/presentation/jeitner | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-08-15T11:45:47
Updated: 2022-08-15T11:45:47
Reserved: 2022-06-18T00:00:00
Link: CVE-2022-33993
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-08-15T12:15:19.200
Modified: 2022-08-18T17:48:34.593
Link: CVE-2022-33993
JSON object: View
Redhat Information
No data.
CWE