VU#473698: uClibc, uClibc-ng libraries have monotonically increasing DNS transaction ID

Opsfolio Community
May 9, 2022, 1 year ago
119

Overview The uClibc and uClibc-ng libraries are vulnerable to DNS cache poisoning due to the use of predicatble DNS transaction IDs when making DNS requests. This vulnerability can allow an attacker to perform DNS cache poisoning attacks against a vulnerable environment. Description The uClibc and the Uclibc-ng software are lightweight C standard libraries intended for use in embedded systems and mobile devices. The uClibc library has not been updated since May of 2012. The newer uClibc-ng is the currently maintained...

Source: https://kb.cert.org/vuls/id/473698

VU#473698: uClibc, uClibc-ng libraries have monotonically increasing DNS transaction ID

VU#473698: uClibc, uClibc-ng libraries have monotonically increasing DNS transaction ID

Subscribe To Our Newsletter!

Popular Posts

What A Cybersecurity Degree Teach You About Protecting Businesses Against Threats

Steps to creating a healthcare app

Cybersecurity Tips For Freelance Healthcare Workers

How to Create a Secure Healthcare Website?

How to keep your child safe from infections when you are not at home?

POPULAR Media

Ransomware Payouts Are On The Rise

Defense Against Socially Engineered Attacks

Address Ransomware With Multiple Layered Security

Hitrust – Streamlining the Compliance Process