Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-10995

PowerDNS Recursor from 4.1.0 up to and including 4.3.0 does not sufficiently defend against amplification attacks. An issue in the DNS protocol has been found that allow malicious parties to use recursive DNS services to attack third party authoritative name servers. The attack uses a crafted reply by an authoritative name server to amplify the resulting traffic between the recursive and other authoritative name servers. Both types of service can suffer degraded performance as an effect. This is triggered by random subdomains in the NSDNAME in NS records. PowerDNS Recursor 4.1.16, 4.2.2 and 4.3.1 contain a mitigation to limit the impact of this DNS protocol issue.

Published

2020-05-19T17:15:10.163

Last Modified

2024-11-21T04:56:32.650

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-400

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	powerdns	recursor	≤ 4.3.0	Yes
Operating System	fedoraproject	fedora	31	Yes
Operating System	fedoraproject	fedora	32	Yes
Operating System	debian	debian_linux	10.0	Yes
Application	opensuse	backports_sle	15.0	Yes
Operating System	opensuse	leap	15.1	Yes

References

http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00052.html Mailing List, Third Party Advisory ([email protected])
http://www.nxnsattack.com Technical Description, Third Party Advisory ([email protected])
https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-01.html Vendor Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NMP72NJGKBWR5WEBXAWX5KSLQUDFTG6S/ ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PS4ZN5XGENYNFKX7QIIOUCQQHXE37GJF/ ([email protected])
https://www.debian.org/security/2020/dsa-4691 Third Party Advisory ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00052.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.nxnsattack.com Technical Description, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-01.html Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NMP72NJGKBWR5WEBXAWX5KSLQUDFTG6S/ (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PS4ZN5XGENYNFKX7QIIOUCQQHXE37GJF/ (af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2020/dsa-4691 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)