CVE-2022-33990

CVE-2022-33990

EPSS 0.9%

Misinterpretation of special domain name characters in dproxy-nexgen (aka dproxy nexgen) leads to cache poisoning because domain names and their associated IP addresses are cached in their misinterpreted form.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://sourceforge.net/projects/dproxy/https://www.openwall.com/lists/oss-security/2022/08/14/3 https://www.usenix.org/conference/usenixsecurity21/presentation/jeitner https://www.usenix.org/conference/usenixsecurity22/presentation/jeitner