CVE-2012-1191

EPSS 0.47%

Published: 2/17/2012Modified: 4/28/2026

Also known as:DEBIAN-CVE-2012-1191

Description

The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.

Affected packages (1)

Debian/djbdnsfrom 0, < 1:1.05-10

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-1191