PT-2021-3537 · Dnsmasq+6 · Dnsmasq+6

Published

2021-01-19

·

Updated

2024-06-15

·

CVE-2020-25686

CVSS v2.0

4.3

Medium

VectorAV:N/AC:M/Au:N/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions dnsmasq versions prior to 2.83
Description A flaw in dnsmasq allows an off-path attacker to substantially reduce the number of attempts needed to forge a reply and have it accepted by dnsmasq. This issue is related to the lack of checking for existing pending requests for the same name, which can lead to DNS cache poisoning. The highest threat from this vulnerability is to data integrity. If chained with another issue, the attack complexity of a successful attack is reduced.
Recommendations For dnsmasq versions prior to 2.83, update to version 2.83 or later to resolve the issue. As a temporary workaround, consider restricting the use of dnsmasq as a DNS server to minimize the risk of exploitation. Avoid using the EOS switch as a DNS server until the issue is resolved.

Exploit

Fix

Improperly Implemented Security Check for Standard

Authentication Bypass by Spoofing

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-358CWE-290

Related Identifiers

ALT-PU-2021-1126
ALT-PU-2021-1167
ALT-PU-2021-1217
BDU:2021-03619
CESA-2021_0150
CESA-2021_0153
CVE-2020-25686
DSA-4844-1
MGASA-2021-0059
OESA-2021-1001
OPENSUSE-SU-2021:0124-1
OPENSUSE-SU-2021:0129-1
OPENSUSE-SU-2021_0124-1
OPENSUSE-SU-2021_0129-1
OPENSUSE-SU-2024:10721-1
RHSA-2021:0150
RHSA-2021:0151
RHSA-2021:0152
RHSA-2021:0153
RHSA-2021:0154
RHSA-2021:0155
RHSA-2021:0156
RHSA-2021:0240
RHSA-2021:0245
RHSA-2021:0395
RHSA-2021:0401
RHSA-2021_0150
RHSA-2021_0153
SUSE-SU-2021:0162-1
SUSE-SU-2021:0163-1
SUSE-SU-2021:0166-1
SUSE-SU-2021:14603-1
SUSE-SU-2021:14604-1
SUSE-SU-2021_14603-1
USN-4698-1
USN-4698-2

Affected Products

Alt Linux
Centos
Linuxmint
Red Hat
Suse
Ubuntu
Dnsmasq