#VU77909 Input validation error in dnsdist - CVE-2018-14663

Cybersecurity Help s.r.o.

Published: 2023-07-03

Vulnerability identifier: #VU77909

Vulnerability risk: Low

CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-14663

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
dnsdist
Server applications / Other server solutions

Vendor: PowerDNS.COM B.V.

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to insufficient validation of user-supplied input when processing DNS queries. A remote attacker can smuggle certain DNS records into the DNS backend and perform spoofing attack. This issue occurs only when either the ‘useClientSubnet’ or the experimental ‘addXPF’ parameters are used when declaring a new backend.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

dnsdist: 1.0.0 - 1.3.2

External links
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14663
https://dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2018-08.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

SUSE update for dnsdist

DNS records smuggling in PowerDNS DNSDist

Fedora EPEL 7 update for dnsdist

Fedora 29 update for dnsdist

Fedora 28 update for dnsdist