漏洞描述
多个厂商的DNS组件中存在消息解压缩递归漏洞。攻击者能够通过特制的DNS消息使受影响的DNS组件进入无限循环中。
DNS 消息解压缩递归漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2019-16057: D-Link DNS-320 - Remote Code Execution
- POC CVE-2020-25506: D-Link DNS-320 - Unauthenticated Remote Code Execution
- POC azure-nsg-dns-unrestricted: Unrestricted DNS Access in Azure NSGs
- POC gcloud-dns-dangling-records: Dangling DNS Records Check
- POC gcloud-dns-dnssec-unenabled: DNSSEC Not Enabled for Google Cloud DNS Zones
- POC gcloud-dnssec-keysigning-rsasha1: DNSSEC RSASHA1 Algorithm Deprecated Usage
- POC gcloud-dnssec-rsasha1-deprecated: DNSSEC RSASHA1 Algorithm Deprecated
- POC dlink-sharecenter-dns-320-rce: D-Link ShareCenter DNS-320 system_mgr.cgi 远程命令执行漏洞
- POC dns-zone-transfer-any: DNS Zone Transfer Allowed to Any Host
- POC dns-zone-transfer-check: DNS Zone Transfer Check
- POC ip-api-edns-csp-bypass: Content-Security-Policy Bypass - IP-API EDNS
- POC dns-rebinding: DNS Rebinding Attack
- POC dnsmasq-config: Dnsmasq Config - File Disclosure