resolv.c in the DNS resolver in uIP, and dns.c in the DNS resolver in lwIP 1.4.1 and previous versions, does not use random values for ID fields and source ports of DNS query packets, which makes it easier for man-in-the-middle malicious users to conduct cache-poisoning attacks via spoofed reply packets.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lwip project lwip |