CVE-2020-13960

Published: Jun 8, 2020Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

D-Link DSL 2730-U IN_1.10 and IN_1.11 and DIR-600M 3.04 devices have the domain.name string in the DNS resolver search path by default, which allows remote attackers to provide valid DNS responses (and also offer Internet services such as HTTP) for names that otherwise would have had an NXDOMAIN error, by registering a subdomain of the domain.name domain name.

Affected (2)

Products: Dlink: Dsl 2730u Firmware, Dir 600m Firmware

Dlink

2 products

Dsl 2730u Firmware

Dir 600m Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dsl 2730u Firmware	Version in_1.10

Running on/with	Platform Versions
Dlink Dsl 2730u	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 600m Firmware	Version 3.04

Running on/with	Platform Versions
Dlink Dir 600m	All versions

References (2)

https://harigovind.org/articles/who-is-hijacking-my-nxdomains/

Source: cve@mitre.org

ExploitThird Party Advisory

https://harigovind.org/articles/who-is-hijacking-my-nxdomains/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.