NVD Vulnerability Detail

CVE-2012-1570

Summary	The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.
Publication Date	March 28, 2012, 7:55 p.m.
Registration Date	Jan. 28, 2021, 2:55 p.m.
Last Update	Nov. 21, 2024, 10:37 a.m.

Affected software configurations

Related information, measures and tools

No	URL	タグ
1	http://osvdb.org/80192	Broken Link
2	http://osvdb.org/80192	Broken Link
3	http://secunia.com/advisories/48492	Third Party Advisory
4	http://secunia.com/advisories/48492	Third Party Advisory
5	http://www.maradns.org/changelog.html	Release Notes Vendor Advisory
6	http://www.maradns.org/changelog.html	Release Notes Vendor Advisory
7	http://www.openwall.com/lists/oss-security/2012/03/20/1	Mailing List Third Party Advisory
8	http://www.openwall.com/lists/oss-security/2012/03/20/1	Mailing List Third Party Advisory
9	http://www.openwall.com/lists/oss-security/2012/03/20/10	Mailing List Third Party Advisory
10	http://www.openwall.com/lists/oss-security/2012/03/20/10	Mailing List Third Party Advisory
11	http://www.securitytracker.com/id?1026821	Third Party Advisory VDB Entry
12	http://www.securitytracker.com/id?1026821	Third Party Advisory VDB Entry
13	https://bugzilla.redhat.com/show_bug.cgi?id=804770	Issue Tracking Third Party Advisory
14	https://bugzilla.redhat.com/show_bug.cgi?id=804770	Issue Tracking Third Party Advisory
15	https://exchange.xforce.ibmcloud.com/vulnerabilities/74119	Third Party Advisory VDB Entry
16	https://exchange.xforce.ibmcloud.com/vulnerabilities/74119	Third Party Advisory VDB Entry

Common Vulnerabilities List

JVN Vulnerability Information

MaraDNS における無効なドメイン名の継続的な名前解決を可能にされる脆弱性

Title	MaraDNS における無効なドメイン名の継続的な名前解決を可能にされる脆弱性
Summary	MaraDNS のリゾルバは、A レコードクエリへの応答処理中に、キャッシュされた NS レコードのサーバ名および TTL 値の上書きを行うため、無効なドメイン名の継続的な名前解決を可能にされる脆弱性が存在します。
Possible impacts	第三者により、"ghost domain names" 攻撃を介して、無効なドメイン名の継続的な名前解決を可能にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	March 17, 2012, midnight
Registration Date	March 29, 2012, 3:25 p.m.
Last Update	March 29, 2012, 3:25 p.m.

Affected System

MaraDNS

MaraDNS 1.3.0.7.15 未満

MaraDNS 1.4.12 未満の 1.4.x

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2012-1570	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1570
National Vulnerability Database (NVD)
2	CVE-2012-1570	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-1570

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-DesignError	https://www.ipa.go.jp/security/vuln/CWE.html#CWEDesignError

ベンダー情報

No	Name	URL
MaraDNS
1	MaraDNS changelog	http://www.maradns.org/changelog.html

Change Log

No	Changed Details	Date of change
0	[2012年03月29日] 掲載	Feb. 17, 2018, 10:37 a.m.