CVE-2012-1191

djbdns 1.05 - Ghost Domain Names via NS Record Cache Overwrite

Title source: llm
STIX 2.1

Description

The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.

References (1)

Core 1
Core References

Scores

EPSS 0.0190
EPSS Percentile 77.2%

Details

CWE
CWE-20
Status published
Products (1)
d.j.bernstein/djbdns 1.05
Published Feb 17, 2012
Tracked Since Feb 18, 2026