CVE-2012-1570
EPSS 0.66%Published: 3/28/2012Modified: 4/28/2026
Also known as:DEBIAN-CVE-2012-1570
Description
The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.
Affected packages (1)
- Debian/maradnsfrom 0, < 1.4.12-1