<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Dns-Spoofing - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/tags/dns-spoofing/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Sun, 05 Jul 2026 15:21:47 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/tags/dns-spoofing/feed.xml" rel="self" type="application/rss+xml"/><item><title>CVE-2026-9085: Incorrect Permissions Allow DNS Spoofing in Pardus-Parental-Control</title><link>https://feed.craftedsignal.io/briefs/2026-07-cve-2026-9085-pardus-parental-control/</link><pubDate>Sun, 05 Jul 2026 15:21:47 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-cve-2026-9085-pardus-parental-control/</guid><description>An Improper Access Control and Incorrect Permission Assignment vulnerability (CVE-2026-9085) in TUBITAK BILGEM's Pardus-Parental-Control software, affecting versions up to 0.5.1 and all versions before 0.7.0, allows a local attacker to perform DNS Spoofing.</description><content:encoded><![CDATA[<p>A critical vulnerability, tracked as CVE-2026-9085, has been identified in the TUBITAK BILGEM Software Technologies Research Institute's Pardus-Parental-Control software. This flaw is rooted in incorrect permission assignment for critical resources and improper access control mechanisms. Specifically, versions up to and including 0.5.1, and all versions prior to 0.7.0, are susceptible. The vulnerability enables a local attacker to execute DNS Spoofing, potentially redirecting user traffic to malicious sites, facilitating phishing attacks, or intercepting sensitive data. The CVSS v3.1 base score for this vulnerability is 8.8 (High), highlighting its severe impact if exploited. Organizations utilizing affected versions of Pardus-Parental-Control are advised to apply the necessary updates immediately to mitigate this risk.</p>
<h2 id="impact">Impact</h2>
<p>Successful exploitation of CVE-2026-9085 allows a local attacker to conduct DNS Spoofing. This can lead to various severe consequences for users, including redirection to malicious websites, interception of network traffic, credential harvesting through phishing campaigns, and man-in-the-middle attacks. While specific victim counts or industry targeting are not detailed in the available information, any user of the affected Pardus-Parental-Control software could be vulnerable. The primary risk is loss of confidentiality and integrity of network communications, potentially leading to unauthorized access to systems or data.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li><strong>Patch CVE-2026-9085</strong> by upgrading Pardus-Parental-Control to version 0.7.0 or newer immediately. Refer to the vendor's advisory at <code>https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0500</code>.</li>
<li>Implement host-based intrusion detection systems (HIDS) to monitor for unauthorized modifications to critical system files or DNS configuration settings, which could indicate attempts to exploit <code>CWE-284</code> or <code>CWE-732</code>.</li>
<li>Monitor local network traffic for unusual DNS queries or responses that could indicate <code>DNS Spoofing</code> attempts originating from controlled systems.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>dns-spoofing</category><category>access-control</category><category>linux</category><category>vulnerability</category></item></channel></rss>