resolver software vulnerabilities
vulnerabilities.aspcode.net
Searching resolver software vulnerabilities
The default configuration for the domain name r
configuration
|
Microsoft
|
resolver
|
Windows
|
default
|
domain
|
name
|
The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query, which allows remote attackers to poison the DNS cache.
Buffer overflows in the DNS stub resolver libra
overflows
|
resolver
|
library
|
Buffer
|
BIND
|
stub
|
DNS
|
ISC
|
Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2 through 4.9.10, and other derived libraries such as BSD libc and GNU glibc, allow remote attackers to execute arbitrary code via DNS server responses that trigger the overflow in the (1) getnetbyname, or (2) getnetbyaddr functions, aka "LIBRESOLV: buffer overrun" and a different vulnerability than CVE-2002-0684.
Buffer overflow in DNS resolver functions that
functions
|
addresses
|
resolver
|
overflow
|
network
|
perform
|
Buffer
|
lookup
|
names
|
BIND
|
used
|
DNS
|
Buffer overflow in DNS resolver functions that perform lookup of network names and addresses, as used in BIND 4.9.8 and ported to glibc 2.2.5 and earlier, allows remote malicious DNS servers to execute arbitrary code through a subroutine used by functions such as getnetbyname and getnetbyaddr.
The DNS resolver in unspecified versions of Fuj
unspecified
|
recursive
|
resolving
|
arbitrary
|
attackers
|
poisoning
|
versions
|
resource
|
resolver
|
birthday
|
conduct
|
queries
|
Fujitsu
|
record
|
attack
|
number
|
allows
|
remote
|
large
|
hosts
|
UXP/V
|
cache
|
same
|
open
|
uses
|
DNS
|
via
|
The DNS resolver in unspecified versions of Fujitsu UXP/V, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.
The DNS resolver in unspecified versions of Inf
unspecified
|
recursive
|
resolving
|
arbitrary
|
attackers
|
poisoning
|
versions
|
resolver
|
resource
|
birthday
|
Infoblox
|
conduct
|
queries
|
record
|
attack
|
number
|
remote
|
allows
|
hosts
|
large
|
cache
|
open
|
same
|
uses
|
One
|
DNS
|
via
|
The DNS resolver in unspecified versions of Infoblox DNS One, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.
Konqueror can associate a cookie with multiple
ap1comexamplecom
|
demonstrated
|
search-list
|
associated
|
expansion
|
Konqueror
|
associate
|
attackers
|
accepting
|
expanded
|
operates
|
Internet
|
intranet
|
multiple
|
attacker
|
hostname
|
non-root
|
resolver
|
cookies
|
domains
|
entered
|
formed
|
allows
|
domain
|
search
|
ap1com
|
cookie
|
remote
|
steal
|
trick
|
which
|
site
|
user
|
list
|
into
|
has
|
DNS
|
can
|
web
|
via
|
its
|
Konqueror can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote attackers to trick a user into accepting a cookie for a hostname formed via search-list expansion of the hostname entered by the user, or steal a cookie for an expanded hostname, as demonstrated by an attacker who operates an ap1.com Internet web site to steal cookies associated with an ap1.com.example.com intranet web site.
Firefox and Mozilla can associate a cookie with
ap1comexamplecom
|
demonstrated
|
search-list
|
associated
|
accepting
|
associate
|
attackers
|
expansion
|
expanded
|
intranet
|
operates
|
Internet
|
multiple
|
attacker
|
hostname
|
non-root
|
resolver
|
Firefox
|
Mozilla
|
domains
|
entered
|
cookies
|
formed
|
allows
|
domain
|
search
|
ap1com
|
cookie
|
remote
|
steal
|
trick
|
which
|
site
|
user
|
list
|
into
|
has
|
DNS
|
can
|
web
|
via
|
its
|
Firefox and Mozilla can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote attackers to trick a user into accepting a cookie for a hostname formed via search-list expansion of the hostname entered by the user, or steal a cookie for an expanded hostname, as demonstrated by an attacker who operates an ap1.com Internet web site to steal cookies associated with an ap1.com.example.com intranet web site.
Multiple unspecified vulnerabilities in multipl
vulnerabilities
|
FITELnet-F40
|
unspecified
|
including
|
attackers
|
messages
|
Multiple
|
FITELnet
|
products
|
service
|
trigger
|
crafted
|
E20/E30
|
denial
|
errors
|
remote
|
F1000
|
allow
|
cause
|
F100
|
F120
|
F80
|
via
|
DNS
|
Multiple unspecified vulnerabilities in multiple FITELnet products, including FITELnet-F40, F80, F100, F120, F1000, and E20/E30, allow remote attackers to cause a denial of service via crafted DNS messages that trigger errors in (1) ProxyDNS or (2) PKI-Resolver, as demonstrated by the OUSPG PROTOS DNS test suite.
Mozilla based browsers, including Firefox befor
including
|
browsers
|
Firefox
|
Mozilla
|
before
|
based
|
Mozilla based browsers, including Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8, allow remote attackers to bypass the same origin policy, steal cookies, and conduct other attacks by writing a URI with a null byte to the hostname (location.hostname) DOM property, due to interactions with DNS resolver code.
ISC BIND 9 through 9.5.0a5 uses a weak random n
generation
|
answering
|
generator
|
poisoning
|
attackers
|
questions
|
resolver
|
messages
|
sending
|
through
|
perform
|
servers
|
number
|
NOTIFY
|
random
|
during
|
remote
|
easier
|
which
|
cache
|
guess
|
makes
|
950a5
|
query
|
slave
|
next
|
weak
|
uses
|
name
|
BIND
|
ISC
|
DNS
|
ids
|
ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation of DNS query ids when answering resolver questions or sending NOTIFY messages to slave name servers, which makes it easier for remote attackers to guess the next query id and perform DNS cache poisoning.
The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL
The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches via unknown vectors. NOTE: this issue is different from CVE-2007-2926.
Software vulnerabilities results 1 to 12 of 12
Page:
1