← voltar
CVE-2008-1184

CVE-2008-1184

EPSS 1.3%
The DNSSEC validation library (libval) library in dnssec-tools before 1.3.1 does not properly check that the signing key is the APEX trust anchor, which might allow attackers to conduct unspecified attacks.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://secunia.com/advisories/29095http://secunia.com/advisories/29127https://exchange.xforce.ibmcloud.com/vulnerabilities/40836http://sourceforge.net/mailarchive/forum.php?thread_name=sdlk5lolzj.fsf%40wes.hardakers.net&forum_name=dnssec-tools-usershttps://www.redhat.com/archives/fedora-package-announce/2008-February/msg00820.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-February/msg00845.htmlhttp://www.securityfocus.com/bid/27998http://www.vupen.com/english/advisories/2008/0673/references