CVE-2020-8617

This repository contains a functional PoC for CVE-2020-8617, a vulnerability in BIND9's TSIG authentication mechanism. The exploit uses a crafted DNS request with a malformed TSIG record to trigger the vulnerability, demonstrated via a Dockerized BIND9 server and a Python script using Scapy.

This repository contains a Dockerized exploit for CVE-2020-8617, which targets a vulnerability in the BIND DNS server. The Dockerfile sets up the environment and clones the actual exploit code from another repository, while the entrypoint script modifies the target IP before execution.

This exploit leverages a DNS TSIG vulnerability (CVE-2020-8617) by crafting a malformed DNS request with a TSIG record to trigger a denial-of-service condition in BIND 9.16.0. The PoC sends a DNS query with an invalid TSIG record to a local DNS server, potentially causing it to crash.

This Metasploit module exploits a logic error in BIND's TSIG validity check (CVE-2020-8617) to trigger a denial-of-service via a crafted DNS query with a malformed TSIG record. The payload sends a UDP packet with a spoofed source address to crash the BIND service.