Cache poisoning vulnerabilities found in 2 DNS resolving apps
At least one CVE could weaken defenses put in place following 2008 disclosure.
cryptocurrency The makers of BIND, the Internet’s most widely used software for resolving domain names, are warning of two vulnerabilities that allow attackers to poison entire caches of results and send users to malicious destinations that are indistinguishable from the real ones.
The vulnerabilities, tracked as CVE-2025-40778 and CVE-2025-40780, stem from a logic error and a weakness in generating pseudo-random numbers, respectively. They each carry a severity rating of 8.6. Separately, makers of the Domain Name System resolver software Unbound warned of similar vulnerabilities that were reported by the same researchers. The unbound vulnerability severity score is 5.6
Cache poisoning vulnerabilities found in 2 DNS resolving apps The vulnerabilities can be exploited to cause DNS resolvers located inside thousands of organizations to replace valid results for domain lookups with corrupted ones. The corrupted results would replace the IP addresses controlled by the domain name operator (for instance, 3.15.119.63 for arstechnica.com) with malicious ones controlled by the attacker. Patches for all three vulnerabilities became available on Wednesday.
]]>
Tags:
Related Posts
Your Easy Guide to Smart Home Automation Setup
Transform your living space effortlessly with smart home automation. Discover tips and tricks to create a cozy, connected environment that works for you!
Unplug and Focus: Top Noise-Canceling Earbuds for 2023
Ready to zone in during workouts or commutes? Discover the best noise-canceling earbuds for 2023 that will transform your audio experience!
Smartphone Showdown: Your Ultimate Guide for Gaming & More
Looking for the perfect smartphone? Discover how to choose the best one for gaming, photography, and professional use in our ultimate guide!
Find Your Perfect Fitness Tracker: 2023's Best Reviewed
Choosing the right fitness tracker can be tough. Join me as we break down the best options of 2023 to help you find your perfect fit!
Tech Gadgets That Empower Seniors in Daily Life
Discover how innovative tech can help seniors stay independent and connected. Here are the must-have gadgets that make daily living easier!
Your Essential Laptop Buying Guide for 2023
Choosing the right laptop can be tricky! Discover the top picks for students and remote workers in our ultimate guide to finding your perfect match.