Cache Poisoning Vulnerability in DNRD 2.20.3 due to Misinterpretation of Special Domain Name Characters

Cache Poisoning Vulnerability in DNRD 2.20.3 due to Misinterpretation of Special Domain Name Characters

CVE-2022-33993 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Misinterpretation of special domain name characters in DNRD (aka Domain Name Relay Daemon) 2.20.3 leads to cache poisoning because domain names and their associated IP addresses are cached in their misinterpreted form.

Learn more about our Web Application Penetration Testing UK.