totd 1.5.3 uses a fixed UDP source port in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not enough entropy to prevent traffic injection attacks.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-08-15T11:53:52
Updated: 2024-08-03T09:07:16.040Z
Reserved: 2022-06-22T00:00:00
Link: CVE-2022-34294
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-08-15T12:15:19.963
Modified: 2024-11-21T07:09:14.400
Link: CVE-2022-34294
Redhat
No data.