Vendor
medium
advisory
Hickory DNS Recursor Cache Poisoning via Sibling Zone Delegation
2 rulesThe experimental `hickory-recursor` crate in Hickory DNS is vulnerable to cross-zone cache poisoning due to storing DNS records keyed by record name/type instead of query, enabling an attacker to redirect queries for a victim zone to an attacker-controlled nameserver.
hickory-recursor +1
dns
cache-poisoning
zone-delegation
2r
medium
advisory
Hickory DNS NSEC3 Validation Vulnerability Leads to DoS
2 rules 1 TTPA vulnerability in Hickory DNS's NSEC3 closest-encloser proof validation allows a remote attacker to cause a denial of service by exhausting memory when processing crafted DNS responses with mismatched SOA records.
hickory-proto +1
denial-of-service
dnssec
memory-exhaustion
2r
1t