[Bug 1839821] CVE-2020-12667 knot-resolver: Traffic amplification triggered by random subdomains in the NSDNAME in NS records

Author:



Knot Resolver before 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an “NXNSAttack” issue. This is triggered by random subdomains in the NSDNAME in NS records. References:

This CVE Bugzilla entry is for community support informational purposes….



Source link

Write a comment:
*

Your email address will not be published.

RELATED STORIES
vamtam-theme-circle-post
Category CERT-LatestNews Microsoft ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesCrypto VulnerabilitiesDBMS VulnerabilitiesGoogle VulnerabilitiesHardware VulnerabilitiesMicrosoft VulnerabilitiesMozilla VulnerabilitiesNetwork VulnerabilitiesOS

Notorious Phorpiex Botnet Rises Again, Doubling Its Global Impact On Organizations

July 10, 2020
Check Point Research finds sharp increase in attacks using the Phorpiex Botnet delivering new ‘Avaddon’...
Tags , , , , , , , ,
Read More
vamtam-theme-circle-post
Category Applications CERT-LatestNews ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications

Mageia 2020-0291: xpdf security update

July 10, 2020
Are you considering making the switch to Purism’s new Librem 14 Linux laptop to improve...
Tags , , , , ,
Read More
vamtam-theme-circle-post
Category CERT-LatestNews Microsoft ThreatsCybercrime ThreatsStrategic VulnerabilitiesAll VulnerabilitiesMicrosoft

Zoom to Patch Zero-Day Vulnerability in Windows 7 | #exploits | #cybersecurity

July 10, 2020
Zoom to Patch Zero-Day Vulnerability in Windows 7 | #exploits | #cybersecurity | #informationsecurity –...
Tags , , , , , , ,
Read More
vamtam-theme-circle-post
Category Applications VulnerabilitiesAll VulnerabilitiesApplications

NVD – CVE-2019-14907

July 10, 2020
CVE-2019-14907 Detail Current Description All samba versions 4.9.x before 4.9.18,...
Read More
Category Applications CERT-LatestNews ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications

CVE-2020-9413 (managed_file_transfer_command_center, managed_file_transfer_internet_server)

July 10, 2020
Current Description. The MFT Browser file transfer client and MFT Browser admin client components of...
Read More
Category CERT-LatestNews Microsoft ThreatsCybercrime ThreatsEconomic VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesMicrosoft

Zoom Working on Patch for Code Execution Vulnerability in Windows Client

July 10, 2020
Zoom is working on resolving a remote code execution vulnerability affecting the Windows client, but...
Tags , , , , , , , , , , ,
Read More
vamtam-theme-circle-post
Category Applications CERT-LatestNews ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications

Open-redirection leads to a bounty | by Pratik Dabhi | InfoSec Write-ups | Jul, 2020

July 10, 2020
Hey guys Pratik this side. In this writeup, I’m going to share some of my...
Read More
vamtam-theme-circle-post
Category Database Management Systems VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesCisco VulnerabilitiesDBMS

Talos Blog || Cisco Talos Intelligence Group

July 10, 2020
Yuri Kramarz of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. Cisco Talos researchers...
Tags , , , , ,
Read More
vamtam-theme-circle-post
Category CERT-LatestNews Hardware ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesHardware

How to Assess More Sophisticated IoT Threats

July 10, 2020
image credit: pixabay As devices and technologies connecting us to the world evolve, cybercriminals are...
Tags , , , ,
Read More
vamtam-theme-circle-post
Category Applications CERT-LatestNews DDoS-Threats ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications

BIG-IP Vulnerability Exploited to Deliver DDoS Malware

July 10, 2020
image credit: pixabay The vulnerability affecting F5 Networks’ BIG-IP application delivery controller (ADC) is tracked...
Read More
digitpol
scale
element-support
Call Center
+31 55 8448040
element-map
Location

Global

International Cyber Crime Investigation

Digitpol is licensed by the Ministry of Justice: Licence Number POB1557

©Digitpol. All images and content are copyright of Digitpol and can not be used, replicated or reproduced without written permission. 2019.

Privacy  /   Terms and Policy   /   Site map  /   Contact