Unbound DNS Server NSEC3 Signature Verification DNS Spoofing Vulnerability

Unbound DNS Server NSEC3 Signature Verification DNS Spoofing Vulnerability

Unbound DNS Server is prone to a DNS-spoofing vulnerability.

Successful exploits allow remote attackers to spoof delegation responses so as to downgrade secure delegations to insecure status, which may aid in further attacks.

Versions prior to Unbound 1.3.4 are vulnerable.