Pablo Ruiz

**Name of the Vulnerable Software and Affected Versions** NLnet Labs ldns versions 1.2.0 through 1.9.0 **Description** When used in applications as a stub resolver over UDP, the software fails to match the query destination address and port with the response source address and port. Additionally, it does not verify that the query ID or the query question matches the response. This deficiency allows for off-path poisoning attacks, where an attacker sends forged responses to the resolver. The drill tool included with the software is also affected. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.