https://github.com/knqyf263/CVE-2019-6467

CVE-2019-6467 (BIND nxdomain-redirect)
https://github.com/knqyf263/CVE-2019-6467

Last synced: 3 months ago
JSON representation

CVE-2019-6467 (BIND nxdomain-redirect)

• Host: GitHub
• URL: https://github.com/knqyf263/CVE-2019-6467
• Owner: knqyf263
• License: mit
• Created: 2019-04-25T03:26:42.000Z (over 5 years ago)
• Default Branch: master
• Last Pushed: 2019-04-25T04:06:48.000Z (over 5 years ago)
• Last Synced: 2024-01-24T12:24:15.888Z (9 months ago)
• Language: Dockerfile
• Size: 1.45 MB
• Stars: 28
• Watchers: 3
• Forks: 7
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

• awesome-hacking-lists - knqyf263/CVE-2019-6467 - CVE-2019-6467 (BIND nxdomain-redirect) (Dockerfile)

README

        
# CVE-2019-6467

BIND nxdomain-redirect

For educational purposes only

![demo](imgs/cve-2019-6467.gif)

## Run

```

$ docker run --rm --name cve-2019-6467 -it -p 53:53/udp knqyf263/cve-2019-6467

```

## Exploit

Normal query

```

$ dig @127.0.0.1 nxdomain.example.com

```

`nxdomain` can be replaced by anything that means non-existent domain name. (e.g. foobar.example.com)

## Reference

- https://ftp.isc.org/isc/bind/9.12.4-P1/RELEASE-NOTES-bind-9.12.4-P1.html

- https://ftp.isc.org/isc/bind9/9.14.1/RELEASE-NOTES-bind-9.14.1.html