CVE-2012-1570
EPSS 0.66%
Description
The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.
How to fix CVE-2012-1570
To remediate CVE-2012-1570, upgrade the affected package to a fixed version below.
- Debian/maradns—upgrade to 1.4.12-1 or later
Is CVE-2012-1570 being exploited?
Low — EPSS is 0.7%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.4.12-1