← Volver a CVEs
CVE-2022-34294
CRITICAL9.8
Descripcion
totd 1.5.3 uses a fixed UDP source port in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not enough entropy to prevent traffic injection attacks.
Detalles CVE
Puntuacion CVSS v3.19.8
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado8/15/2022
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
totd_project:totd
Debilidades (CWE)
CWE-331
Referencias
https://github.com/fwdillema/totd(cve@mitre.org)
https://www.blackhat.com/presentations/bh-jp-08/bh-jp-08-Kaminsky/BlackHat-Japan-08-Kaminsky-DNS08-BlackOps.pdf(cve@mitre.org)
https://www.openwall.com/lists/oss-security/2022/08/14/2(cve@mitre.org)
https://github.com/fwdillema/totd(af854a3a-2127-422b-91ae-364da2661108)
https://www.blackhat.com/presentations/bh-jp-08/bh-jp-08-Kaminsky/BlackHat-Japan-08-Kaminsky-DNS08-BlackOps.pdf(af854a3a-2127-422b-91ae-364da2661108)
https://www.openwall.com/lists/oss-security/2022/08/14/2(af854a3a-2127-422b-91ae-364da2661108)
https://www.usenix.org/conference/usenixsecurity22/presentation/jeitner(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.