메뉴 건너뛰기

GREATUSER

cve

CVE-2017-15090

관리자 2018.01.25 04:00 조회 수 : 189

An issue has been found in the DNSSEC validation component of PowerDNS Recursor from 4.0.0 and up to and including 4.0.6, where the signatures might have been accepted as valid even if the signed data was not in bailiwick of the DNSKEY used to sign it. This allows an attacker in position of man-in-the-middle to alter the content of records by issuing a valid signature for the crafted records.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-15090
번호 제목 글쓴이 날짜 조회 수
557 CVE-2017-2747 관리자 2018.01.25 290
556 CVE-2017-2746 관리자 2018.01.25 288
555 CVE-2017-16618 관리자 2017.11.09 241
554 CVE-2016-3220 관리자 2016.06.17 241
553 CVE-2015-4180 관리자 2017.08.27 239
552 CVE-2017-14457 관리자 2018.01.25 238
551 CVE-2018-5999 관리자 2018.01.25 236
550 CVE-2017-9509 관리자 2017.08.27 236
549 CVE-2017-16593 관리자 2018.01.25 233
548 CVE-2017-2914 관리자 2017.11.09 232
547 CVE-2017-16546 (imagemagick) 관리자 2017.11.09 232
546 CVE-2017-11610 관리자 2017.08.27 232
545 CVE-2016-3223 관리자 2016.06.17 232
544 CVE-2017-2882 관리자 2017.11.09 228
543 CVE-2017-12085 관리자 2017.11.09 228
위로