Security News > 2021 > April > NAME:WRECK DNS vulnerabilities affect over 100 million devices

NAME:WRECK DNS vulnerabilities affect over 100 million devices
2021-04-13 04:01

Security researchers today disclosed nine vulnerabilities affecting implementations of the Domain Name System protocol in popular TCP/IP network communication stacks running on at least 100 million devices.

It is not uncommon for DNS response packets to include the same domain name or a part of it more than once, so a compression mechanism exists to reduce the size of DNS messages.

Messagecompression RCE 7.7 CVE-2016-20009 IPnet - stack-based overflow on the message decompression function Messagecompression RCE 9.8 CVE-2020-15795 Nucleus NET. - DNS domain name label parsing functionality does notproperly validate the names in DNS responses.

Messagecompression RCE 8.1 CVE-2020-27736 Nucleus NET. - DNS domain name label parsing functionality does notproperly validate the name in DNS responses.

Domain namelabel parsing DoS 6.5 CVE-2020-27738 Nucleus NET. - DNS domain name record decompression functionalitydoes not properly validate the pointer offset values.

Messagecompression DoS 6.5 CVE-2021-25677 Nucleus NET - DNS client does not properly randomize DNS transaction ID and UDP port numbers Transaction ID DNS cache poisoning/spoofing 5.3 * NetX - two functions in the DNS resolver fo not check that the compression pointer doesnot equal the same offset currently being parsed, potentially leading to infinite loop Messagecompression DoS 6.5.


News URL

https://www.bleepingcomputer.com/news/security/name-wreck-dns-vulnerabilities-affect-over-100-million-devices/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2021-04-22 CVE-2021-25677 Use of Insufficiently Random Values vulnerability in Siemens products
A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.3), Nucleus ReadyStart V3 (All versions < V2017.02.4), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (Versions including affected DNS modules), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), SIMOTICS CONNECT 400 (All versions >= V0.5.0.0 < V1.0.0.0), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5).
network
low complexity
siemens CWE-330
5.3
5.3
2021-04-22 CVE-2020-15795 Out-of-bounds Write vulnerability in Siemens Nucleus NET and Nucleus Source Code
A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), Nucleus NET (All versions < V5.2), Nucleus Source Code (Versions including affected DNS modules), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5).
network
high complexity
siemens CWE-787
8.1
8.1
2021-04-22 CVE-2020-27736 Out-of-bounds Read vulnerability in Siemens products
A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.3), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (Versions including affected DNS modules), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5).
network
high complexity
siemens CWE-125
6.5
6.5
2021-04-22 CVE-2020-27738 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Siemens products
A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.3), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (Versions including affected DNS modules), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5).
network
high complexity
siemens CWE-119
7.4
7.4
2021-03-11 CVE-2016-20009 Out-of-bounds Write vulnerability in multiple products
A DNS client stack-based buffer overflow in ipdnsc_decode_name() affects Wind River VxWorks 6.5 through 7.
network
low complexity
windriver siemens CWE-787
critical
 9.8
9.8