Description
The resolver in ISC BIND 9 through 9.8.1-P1 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.
References (11)
Core 11
Core References
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=135638082529878&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/73053
Vendor Advisory x_refsource_confirm
https://www.isc.org/software/bind/advisories/cve-2012-1033
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1026647
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/47884
Various Sources vendor-advisory
x_refsource_suse
https://hermes.opensuse.org/messages/15136477
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/78916
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-0717.html
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/542123
Various Sources vendor-advisory
x_refsource_suse
https://hermes.opensuse.org/messages/15136456
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/51898
Scores
EPSS
0.0187
EPSS Percentile
83.3%
Details
Status
published
Products (32)
isc/bind
9.0
isc/bind
9.0.1
isc/bind
9.1
isc/bind
9.1.1
isc/bind
9.1.2
isc/bind
9.1.3
isc/bind
9.2
isc/bind
9.2.0
isc/bind
9.2.1
isc/bind
9.2.2 (2 CPE variants)
... and 22 more
Published
Feb 08, 2012
Tracked Since
Feb 18, 2026