DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. The owner name of RRSIG RRs is not validated, permitting an malicious user to present the RRSIG for an attacker-controlled domain in a response for any other domain.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
go-resolver project go-resolver - |