shutingrz

2 exploits Active since Jul 2018
CVE-2018-10920 NOMISEC MEDIUM WORKING POC
Knot Resolver < 2.4.1 - Cache Poisoning via Improper Input Validation
Improper input validation bug in DNS resolver component of Knot Resolver before 2.4.1 allows remote attacker to poison cache.
CVSS 6.8
CVE-2017-15120 NOMISEC HIGH WORKING POC
PowerDNS Recursor < 4.0.8 - Unauthenticated Denial of Service via CNAME Parsing
An issue has been found in the parsing of authoritative answers in PowerDNS Recursor before 4.0.8, leading to a NULL pointer dereference when parsing a specially crafted answer containing a CNAME of a different class than IN. An unauthenticated remote attacker could cause a denial of service.
CVSS 7.5