Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2012-1193

The resolver in PowerDNS Recursor (aka pdns_recursor) 3.3 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.

Related bugs and status

CVE-2012-1193 (Candidate) is related to these bugs:

Bug #1391409: "ghost domain names" attack CVE-2012-1193

Summary				In	Importance	Status
	1391409	"ghost domain names" attack CVE-2012-1193		pdns-recursor (Ubuntu)	Low	Fix Released
	1391409	"ghost domain names" attack CVE-2012-1193		pdns-recursor (Ubuntu Precise)	Low	Won't Fix

See the

CVE page on Mitre.org for more details.

References

MISC: https://www.isc.org/fi...
FEDORA: FEDORA-2013-5692
FEDORA: FEDORA-2013-6279
FEDORA: FEDORA-2013-6316