Vulnerabilities > CVE-2022-33990 - Unspecified vulnerability in Dproxy-Nexgen Project Dproxy-Nexgen
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
HIGH Availability impact
NONE Summary
Misinterpretation of special domain name characters in dproxy-nexgen (aka dproxy nexgen) leads to cache poisoning because domain names and their associated IP addresses are cached in their misinterpreted form.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- https://sourceforge.net/projects/dproxy/
- https://sourceforge.net/projects/dproxy/
- https://www.openwall.com/lists/oss-security/2022/08/14/3
- https://www.openwall.com/lists/oss-security/2022/08/14/3
- https://www.usenix.org/conference/usenixsecurity21/presentation/jeitner
- https://www.usenix.org/conference/usenixsecurity21/presentation/jeitner
- https://www.usenix.org/conference/usenixsecurity22/presentation/jeitner
- https://www.usenix.org/conference/usenixsecurity22/presentation/jeitner