CVE-2012-1191

Name of the Vulnerable Software and Affected Versions djbdns version 1.05

Description The issue allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack. This occurs because the resolver in dnscache overwrites cached server names and TTL values in NS records during the processing of a response to an A record query.

Recommendations For djbdns version 1.05, consider disabling the resolver in dnscache as a temporary workaround until a patch is available. Restrict access to the dnscache module to minimize the risk of exploitation. Avoid using the resolver for A record queries in the affected version until the issue is resolved.