← voltar
CVE-2022-33988

CVE-2022-33988

EPSS 0.9%
dproxy-nexgen (aka dproxy nexgen) re-uses the DNS transaction id (TXID) value from client queries, which allows attackers (able to send queries to the resolver) to conduct DNS cache-poisoning attacks because the TXID value is known to the attacker.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://sourceforge.net/projects/dproxy/https://www.openwall.com/lists/oss-security/2022/08/14/3https://www.usenix.org/conference/usenixsecurity22/presentation/jeitner