CVE-2009-3602
EPSS 1.6%unbound - DNSSEC validation
發布日:2009/10/13修改日:2026/4/28
描述
Unbound before 1.3.4 does not properly verify signatures for NSEC3 records, which allows remote attackers to cause secure delegations to be downgraded via DNS spoofing or other DNS-related attacks in conjunction with crafted delegation responses.
受影響套件(2)
- Debian/unboundfrom 0, < 1.3.4-1
- Debian/unboundfrom 0, < 1.0.2-1+lenny1